This exploit targets a format string vulnerability in FreeBSD's `top` utility (versions up to 3.5beta9). It leverages environment variables and format string manipulation to overwrite the .dtors section, achieving arbitrary code execution via shellcode.
Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target:FreeBSD top (up to 3.5beta9)
No auth needed
Prerequisites:Access to the target system · Ability to set environment variables · Presence of vulnerable `top` binary