Problems with my test machine

[gn0xter]

Hey guys.
I just tried to get into my test-machine. (win2k SP4)

I trid to get into it via Metasploit. I chose the RPC Dcom Buffer overflow. But everything I try I get this:

Code:

[*] Started reverse handler on 192.168.100.58:4444[*] Trying target Windows NT SP3-6a/2000/XP/2003 Universal...[*] Binding to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.100.24[135] ...[*] Bound to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.100.24[135] ...[*] Sending exploit ...[*] Exploit completed, but no session was created.

Why is there never a session created?
Thanks

[pieface]

not vunerable,read up about the exploits your trying to use and how they work.
info <exploit>

[gn0xter]

not vunerable,read up about the exploits your trying to use and how they work.
info <exploit>

Sure?
I thought that it must have been vulnerable to this. It was a Win 2k SP4 machine. It has to be vulnerable to nearly all the RPC exploits.

So if you are right:
could you suggest another one? (I mean another exploit, that may work.)

Thanks a lot.

[Archangel-Amael]

A better idea is you find out what services are running on the target and then you look for exploits against those services. Since the target is yours you will be able to find this info in several ways.

[gn0xter]

Of course it would be easy to do that but I was looking for some way to get the information without getting to the machine in physical ways cause this would have nothin to do with reality.
I found some ports open with nmap and I tried nexpose but with no result.
nmap showed me msrpc on 135 and 445 open also 1037 for unknown and 2002 for global...

[Archangel-Amael]

Obviously you did not understand me completely. Let me try again. You must become one with the machine. NO wait. When you find a machine ( in your case the windows box) you then need to use a tool to determine what services (and as much info about said service) are running on the machine. Using nmap is one way of getting this info. There are others (which is why I stated the above). Once you have this info on the running services then you can look for vulnerabilities against those services.
I would suggest you take a look at Penetration Testing Methodologies. Which one doesn't matter since the steps/procedures are pretty much the same.

[gn0xter]

So i did as u said And now I detected RTSP Apple Quicktime:
So I chose to get into this.
but now I gethis:
[*] Exploit running as background job.[*] Server started. [*] Started bind handler

msf exploit(apple_quicktime_rtsp_response) >


Thats all.
Does it mean it is not vulnerable or does it mean it is?