Re: [Full-Disclosure] No shell => secure?
From: npguy <npguy@websurfer.com.np>
Date: Fri Jul 09 2004 - 11:29:07 EDT
Date: Fri Jul 09 2004 - 11:29:07 EDT
On Friday 09 July 2004 08:19 am, hax wrote:
> 2) That'd stop a lot of skript kiddies, I guess, but it'd be pretty
> trivial to just rework the shellcode to call some other command
> instead of /bin/sh.
if this is single target. attacker can guess your setting and keeping
executing any commands it could possible target to execute more attack
what about wget from shellcode.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Fri Jul 09 11:59:52 2004
This archive was generated by hypermail 2.1.8 : Fri Jul 09 2004 - 12:02:41 EDT
Custom Search
