hackerbrother

Learn Penetration Testing And Ethical Hacking Online.

facebook

  • Facebook
  • Popular Posts


    This program run without arguments will perform a 'uname -r' to grab the Linux Operating Systems release version, and return a suggestive list of possible exploits. Nothing fancy, so a patched/back-ported patch may fool this script.

    This script has been extremely useful on site and in exams
    Usage
    perl ./Linux_Exploit_Suggester.pl -k 4.11.7
    root privilege escalation opportunities on Linux machine,

    Sample Output

    $ perl ./Linux_Exploit_Suggester.pl -k 2.6.28
    
    Kernel local: 2.6.28
    
    Possible Exploits:
    [+] sock_sendpage2
       Alt: proto_ops    CVE-2009-2692
       Source: http://www.exploit-db.com/exploits/9436
    [+] half_nelson3
       Alt: econet    CVE-2010-4073
       Source: http://www.exploit-db.com/exploits/17787/
    [+] reiserfs
       CVE-2010-1146
       Source: http://www.exploit-db.com/exploits/12130/
    [+] pktcdvd
       CVE-2010-3437
       Source: http://www.exploit-db.com/exploits/15150/
    [+] american-sign-language
       CVE-2010-4347
       Source: http://www.securityfocus.com/bid/45408/
    [+] half_nelson
       Alt: econet    CVE-2010-3848
       Source: http://www.exploit-db.com/exploits/6851
    [+] udev
       Alt: udev <1 .4.1="" alt:="" c="" can_bcm="" cve-2009-1185="" cve-2009-2692="" cve-2009-3547="" cve-2010-0415="" cve-2010-2959="" cve-2010-3081="" cve-2010-3301="" cve-2010-3848="" cve-2010-3850="" data="" do_pages_move="" econet="" enlightenment="" exit_notify="" exploits="" half_nelson1="" half_nelson2="" http:="" ia32syscall="" pipe.c_32bit="" pre="" ptrace_kmod2="" robert_you_suck="" sieve="" sock_sendpage="" source:="" spenders="" video4linux="" vulnerabilities="" wunderbar_emporium="" www.exploit-db.com="" www.securityfocus.com="">

    0 Comments