File Permissions

Owner Group All Users

xxx xxx xxx

r = read

w = write

x = execute

s = suid

#example of a vulnerable file where all users inc lower priv can update shell file and privesc.

rwx rwx rwx root root /usr/lib/something.sh

#-s suid allows least priv to run file as root

rws -xr -x root root /usr/lib/something.sh

-s SGID run suid as the group priv

rwx r-s r-x root shadow /usr/lib/something.sh