[17921] in bugtraq
Re: Slack-7.0/Apache-1.3.12/PHP-3.0.16 remote exploit
daemon@ATHENA.MIT.EDU (Radu-Adrian Feurdean)
Tue Dec 5 13:03:57 2000
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-ID: <Pine.LNX.4.21.0012051251390.30109-100000@WormHole.Intra.ZEHC.Net>
Date: Tue, 5 Dec 2000 12:54:10 +0100
Reply-To: Radu-Adrian Feurdean <raf@ZEHC.NET>
From: Radu-Adrian Feurdean <raf@ZEHC.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
In-Reply-To: <383299897.975744757452.JavaMail.root@web584-mc>
On Sat, 2 Dec 2000, August Gneisenau wrote:
> attached is a simple exploit. works perfectly on my slack-7.0. somebody
> please find the correct addresses for other distros/releases.
>
> if the default ones dont work specify these from the commandline for slack
> 7.0
> eip address/shellcode address
> 0xbfff9b90/0xbfff958c
It should be noted that Slackware does not ship php. This exploit is PHP
specific.
Radu-Adrian Feurdean
mailto: raf@chez.com
-------------------------------------------------------------------
"If the night is silent enough you can hear a Windows NT rebooting"
