On Sun, Dec 23, 2001 at 08:03:53PM +1100, Jeff Waugh wrote: > Holy cow! Krazy Sunday Linux Challenge! > > Your challenge, should you choose to accept it is: > > Reboot a linux-mipsel machine using only... a running root bash process. > Toough one. Hopefully your running a really old copy of bash that is susceptible to a buffer overflow attach then you just need to craft an attack that executes the following code when it overflows.
reboot(0xfee1dead, 672274793, LINUX_REBOOT_CMD_RESTART); You might find the following links useful (from a random google search not my bookmarks :) "Smashing The Stack For Fun And Profit" - http://www.11a.nu/stack/stack-smash.txt "Writing buffer overflow exploits - a tutorial for beginners" - http://www.11a.nu/stack/exploit.txt "Advanced buffer overflow exploit" - http://www.11a.nu/stack/adv.overflow.paper.txt "w00w00 on Heap Overflows" - http://www.11a.nu/stack/heaptut.txt -- John Ferlito Senior Engineer Bulletproof Networks ph: +61 (0) 2 9663 9000 fax: +61 (0) 2 9662 4744 mob: +61 (0) 410 519 382 http://www.bulletproof.net.au/ This e-mail and any attachments are confidential and may be legally privileged. Only the intended recipient may access or use it and no confidentiality or privilege is waived or lost by mistaken transmission. If you are not the intended recipient you must not copy or disclose this email's contents to any person and you must delete it and notify us immediately. Bulletproof Networks uses virus scanning software but excludes all liability for viruses or similar in any attachment as well as for any error or incompleteness in the contents of this e-mail. -- SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
