🔑 Initial Access
1. Authentication Bypass (Empty Password)
During the enumeration of the Telnet service, I attempted to login using the most privileged account name, root.
Steps:
- Connection established via Telnet client.
- Username
rootentered at the login prompt. - Password prompt bypassed by pressing Enter (no password provided).
2. Exploitation Results
The server accepted the empty password for the root account, granting an immediate, unencrypted shell with the highest possible privileges.
Verified system access and user identity:
- User:
root - Hostname:
Meow
Next Step