hello guys,there is a server and I`ve already got the webshell,the os is linux and kernel version is 2.6.18-92 and i have tried all the exploits on internet but cannt get root of it,any ideas ?

the vmsplice exploit should work.

search for "jessica_biel.c"

-id

no,it doesn`t work.seems this server has been patched very well.
i tried all exploits that i can find but still cannt root it.

Unless they patched with the vmsplice does nothing patch it should be vuln. But there's still dozens of ways to root a box, that's just the easiest on an old linux kernel.

Why don't you list the installed packages to get an idea of what's there to exploit, dump the process list, dump /etc/passwd, ls /home, see if you can cat any files with passwords in them (people are dumb and reuse them all the time). Maybe try and run netcat so you have a proper shell to work with.

you haven't told us what you've done so far, and it's kind of pointless listing every way a box can be rooted. Or what you hope to accomplish by rooting it that you can't do as the www user.

-id

Quote

i have tried all the exploits on internet

Well, he's obviously talented if he's tried 'all' exploits..

I wonder if he's tried Start->Run->CMD.. <g>

--thrill

---

It is not the degrees you hold, but the mind you possess. - thrill