- Original Description
- The task
- Step 1: path check
- Step 2: sandboxed RCE
- Step 3: namespace and fsuid shenanigans
- Flag
- Exploit code
A remote filesystem with protobufs and namespace-based security. You can find the flag at /home/user/flag (read-only by root)