http://www.hackerschool.org/HS_Boards/zboard.php?id=QNA_system&no=1092 [º¹»ç]
¹®¼³»¿ëÀº execve ÇÔ¼ö·Î
/bin/sh\0 , ¾ÕÀÎÀÚÀÇ Æ÷ÀÎÅÍ, 0
À» ÀÎÀÚ·Î °£´ÜÈ÷ ¸®´ª½º¿¡¼
½©À» ºÒ·¯¿À´Â ÇൿÀ» ÇÏ´Â ÇÁ·Î±×·¥À»
¾î¼ÀÀ¸·Î Ç¥ÇöÇϴµ¥,
¹®¼:
http://wowhacker.com/?module=file&act=procFileDownload&file_srl=154750&sid=61261702a2594693cd1a487a959e09ed
¹®¼ 42ÆäÀÌÁö¸¦ º¼¶§, °Å±â¼ ¸»Çϱæ
shellÄÚµå»ý¼º½Ã ÇÊ¿äÇÑ ¾î¼Àºí¸®¾î¸¸ ¸ðÀ¸¸é
push 0x0
push '/sh\0'
push '/bin'
mov %esp,%ebx
push $0x0
push %ebx
mov %esp, %ecx
mov $0x0, %edx
mov $0xb, %eax
int $0x80
ÀÌ·¸°Ô µÇ´Âµ¥.. ³ª¸ÓÁö´Â ´Ù ÀÌÇØÇϰڴµ¥..
¾î°¼ ù¹ø°ÁÙ°ú 5¹ø°ÁÙ¿¡¼ push 0x0À» ÇØÁà¾ß ÇÏ´ÂÁö ¸ð¸£°Ú³×¿ä.
edx¿¡´Ù°¡ ±×³É 0x0À» Áý¾î³ÖÁö, ½ºÅÿ¡¼ popÇؼ Áý¾î³Ö¾îÁִ°͵µ ¾Æ´Ï°í
±×·¸´Ù°í, Àú ½ºÅÃÀÇ 0x0ÀÌ ¾î¶² ¿µÇâÀ» ³¢Ä¡´Â °Íµµ ¾Æ´Ï°í...
±×·¸´Ù°í execveÀÎÀÚ 3°³°¡ ¼ø¼´ë·Î ½ºÅÃÀ¸·Î µé¾î°¡´Â°Íµµ ¾Æ´Ï°í¿ä
µµ´ëü Àú°Ô µé¾î°¡¾ß ÇÒ ÀÌÀ¯¸¦ ¸ð¸£°Ú¾î¿ä.;;;
ºÎµð ÀÔ¹®ÀÚÀÇ Áú¹®»çÇ×À» ÇØ°áÇØÁֽʽÿÀ.(__)
|
Hit : 3343 Date : 2009/05/14 08:54
|