Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: Suspicious files in /tmp
Jun 19 2007 07:00AM
Michal Zalewski (lcamtuf dione ids pl)
On Mon, 18 Jun 2007, Matt D. Harris wrote:
> A lot of times in an exploit scenario, you don't have access to stdin.
Why not? If you can call execve, you can go for sh -c 'echo "foo()" | perl
-' instead of calling perl interpreter directly. Or use pipe() + fork().
> While the script could still be...
[ more ]
Copyright 2010, SecurityFocus