A security researcher from GitHub Security Lab discovered a straightforward method to escalate privileges on Ubuntu, allowing a standard user to create an administrator account without advanced coding skills. The vulnerability involves two bugs: one in the accountsservice daemon, which manages user accounts, and another in the GNOME Display Manager (gdm3). By exploiting these bugs, a user can trick the system into launching gnome-initial-setup, which mistakenly believes there are zero user accounts and allows the creation of a new administrator account. The exploit requires access to the graphical desktop session, making it relevant to desktop users only. The researcher accidentally discovered this vulnerability while investigating denial-of-service issues in accountsservice and later developed a reliable method to reproduce the exploit. This discovery underscores the importance of securing open-source software and highlights how seemingly minor bugs can interact to create significant security risks.