During a Linux privilege escalation attempt, a tester finds a binary with the SUID bit set that is not on the GTFOBins list. The binary executes /bin/bash with the effective UID of root. What is the most likely way to exploit this?
Running a SUID binary that spawns a shell with -p preserves the effective UID, giving root.
Why this answer
If a binary runs a shell or command as root, the tester can simply run it to get a root shell.