A security team is investigating a compromised Linux server. They suspect the attacker used privilege escalation via SUID binaries. Which THREE techniques should the team check as potential attack vectors? (Choose THREE.)
LD_PRELOAD can load arbitrary libraries if the binary runs with elevated privs.
Why this answer
Common SUID escalation vectors include exploiting known vulnerable SUID binaries, using shared library injection, and abusing SUID shell scripts that call unsafe commands.