Results 1 to 2 of 2

Thread: I seem to be lost exploiting a XP SP1 machine....

  1. #1
    Just burned his ISO
    Join Date
    Sep 2009
    Posts
    6

    Default I seem to be lost exploiting a XP SP1 machine....

    I don't know why I can't exploit this machine that I'm currently pentesting on... I was able to exploit my laptop a few weeks ago (which is running XPSP2) with ease but when it comes to my desktop I have no luck...

    When I nmaped I got the following:
    Interesting ports on 192.168.1.100:
    Not shown: 995 filtered ports
    PORT STATE SERVICE
    139/tcp open netbios-ssn
    445/tcp open microsoft-ds
    2869/tcp open unknown
    5800/tcp open vnc-http
    5900/tcp open vnc
    MAC Address: 00:118:58:38:5A (Asustek Computer)
    Warning: OSScan results may be unreliable because we could not find at least 1 o
    pen and 1 closed port
    Device type: general purpose
    Running (JUST GUESSING) : Microsoft Windows XP|2003|2000 (98%)
    Aggressive OS guesses: Microsoft Windows XP SP2 or SP3 (98%), Microsoft Windows
    XP SP3 (94%), Microsoft Windows Small Business Server 2003 (93%), Microsoft Wind
    ows 2003 Small Business Server (92%), Microsoft Windows XP Professional SP2 (92%
    ), Microsoft Windows XP SP2 (92%), Microsoft Windows 2000 SP4 (92%), Microsoft W indows 2000 SP4 or Windows XP SP2 or SP3 (91%), Microsoft Windows XP (91%), Micr osoft Windows XP SP2 or SP3, or Windows Server 2003 (91%)
    No exact OS matches for host (test conditions non-ideal).
    Network Distance: 1 hop

    I know its a SP1 machine... And I tried several different exploits but they all keep failing... and autopwn didn't come up with a session either...

    If anyone has any exploits/tips plz help a newbie out >.<!

  2. #2
    Super Moderator lupin's Avatar
    Join Date
    Jan 2010
    Posts
    2,943

    Default

    Quote Originally Posted by Aarhem View Post
    I don't know why I can't exploit this machine that I'm currently pentesting on... I was able to exploit my laptop a few weeks ago (which is running XPSP2) with ease but when it comes to my desktop I have no luck...

    When I nmaped I got the following:
    Interesting ports on 192.168.1.100:
    Not shown: 995 filtered ports
    PORT STATE SERVICE
    139/tcp open netbios-ssn
    445/tcp open microsoft-ds
    2869/tcp open unknown
    5800/tcp open vnc-http
    5900/tcp open vnc
    MAC Address: 00:118:58:38:5A (Asustek Computer)
    Warning: OSScan results may be unreliable because we could not find at least 1 o
    pen and 1 closed port
    Device type: general purpose
    Running (JUST GUESSING) : Microsoft Windows XP|2003|2000 (98%)
    Aggressive OS guesses: Microsoft Windows XP SP2 or SP3 (98%), Microsoft Windows
    XP SP3 (94%), Microsoft Windows Small Business Server 2003 (93%), Microsoft Wind
    ows 2003 Small Business Server (92%), Microsoft Windows XP Professional SP2 (92%
    ), Microsoft Windows XP SP2 (92%), Microsoft Windows 2000 SP4 (92%), Microsoft W indows 2000 SP4 or Windows XP SP2 or SP3 (91%), Microsoft Windows XP (91%), Micr osoft Windows XP SP2 or SP3, or Windows Server 2003 (91%)
    No exact OS matches for host (test conditions non-ideal).
    Network Distance: 1 hop

    I know its a SP1 machine... And I tried several different exploits but they all keep failing... and autopwn didn't come up with a session either...

    If anyone has any exploits/tips plz help a newbie out >.<!
    Run a vulnerability scanner (nessus, openvas) against the system or check Microsoft KB articles or other vulnerability databases to see which vulnerabilities in the file sharing services affect XP SP1. Ensure you set your target as appropriate (to XP SP1) in Metasploit, if thats what you are using.

    Also, stop using the term "pentesting" like that or I'm going to start ranting again.
    Capitalisation is important. It's the difference between "Helping your brother Jack off a horse" and "Helping your brother jack off a horse".

    The Forum Rules, Forum FAQ and the BackTrack Wiki... learn them, love them, live them.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •