[arch-general] KVM troubles
Kyle Terrien
kyleterrien at gmail.com
Sat Nov 28 04:48:13 UTC 2015
On 11/27/2015 04:57 PM, Luna Moonbright wrote:
> Fantastic, I love that book and am wanting to get the rest of the way through it. I didn't realize it was such an issue in KVM. I think it works in virtual box, but it would be nice to get it installed on KVM so me and a few guys can set up a class on exploitation.
>
> I'll keep working on it to.
It's an old version of Ubuntu, so you could have a lot of fun poking at
vulnerabilities, especially if you don't do an apt-get update.
Coincidentally, this VM is vulnerable to my personal favorite
exploit--Shellshock. That's something fun you can cover in your class.
kyle at hacking:~ $ env 'x=() { :;}; echo Vulnerable' bash -c 'echo Test'
Vulnerable
Test
kyle at hacking:~ $
And if you set up a web server on the VM, you can demonstrate how to use
Shellshock to dump /etc/passwd by setting a malicious User-Agent. [0]
--Kyle
[0] http://blog.regehr.org/archives/1187
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <https://lists.archlinux.org/pipermail/arch-general/attachments/20151127/843319f9/attachment.asc>
More information about the arch-general
mailing list