Results 1 to 7 of 7

Thread: Metasploit: Sending exploits to different networks.

  1. #1
    Just burned his ISO
    Join Date
    Jan 2010
    Location
    NY, US
    Posts
    5

    Default Metasploit: Sending exploits to different networks.

    Hey guys,

    This is my first time posting I believe. I'm a senior in highschool on my way to take network security at UAT in Tempe, AZ. I've been trying to get to know metasploit and it was a little daunting at first.

    The situation is this: I have successfully exploited some of my own Win2K machines with the MS03-26 vulnerability. I have a friends permission to test on his system. I have been trying the browser_autopwn and other internet explorer exploits to no avail. I have them connect to my public IP address and my server recognizes it but always hangs on the Sending (exploit name). Then I tried it on my own computer just to check if it was an issue with his end and it still won't work.

  2. #2
    My life is this forum thorin's Avatar
    Join Date
    Jan 2010
    Posts
    2,629

    Default

    Are the browsers you're attempting to exploit affected by the vulnerability in question or have they been patched?
    I'm a compulsive post editor, you might wanna wait until my post has been online for 5-10 mins before quoting it as it will likely change.

    I know I seem harsh in some of my replies. SORRY! But if you're doing something illegal or posting something that seems to be obvious BS I'm going to call you on it.

  3. #3
    Just burned his ISO
    Join Date
    Jan 2010
    Location
    NY, US
    Posts
    5

    Default

    I have tried it on multiple versions of IE including five six and seven but it is a possibility. Does anyone have the full version name for an IE that is vulnerable to say the COM CreateObject Code Execution so I can download it and give it a go?

  4. #4
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by drowningsucks View Post
    I have tried it on multiple versions of IE including five six and seven but it is a possibility. Does anyone have the full version name for an IE that is vulnerable to say the COM CreateObject Code Execution so I can download it and give it a go?
    Why not use a different exploit/ vulnerability with one of your older browsers?

    It would also be a good time to start learning how those exploits/vulnerabilities work.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

  5. #5
    Just burned his ISO
    Join Date
    Jan 2010
    Location
    NY, US
    Posts
    5

    Default

    Quote Originally Posted by archangel.amael View Post
    Why not use a different exploit/ vulnerability with one of your older browsers?

    It would also be a good time to start learning how those exploits/vulnerabilities work.
    Shouldn't autopwn nab my older IE 6 browser then?

    Is it necessary to have both LHOST and SRVHOST set to the same private IP when both are listed?

  6. #6
    Good friend of the forums spawn's Avatar
    Join Date
    Jan 2010
    Posts
    280

    Default

    Quote Originally Posted by drowningsucks View Post
    Shouldn't autopwn nab my older IE 6 browser then?

    Is it necessary to have both LHOST and SRVHOST set to the same private IP when both are listed?
    no, SRVHOST can be default but LHOST you must set it

    start by installing a different versions of windows in a virtual machine
    without updates and test it with metasploit.

  7. #7
    Senior Member BigMac's Avatar
    Join Date
    Jan 2008
    Posts
    213

    Default

    Quote Originally Posted by spawn View Post
    no, SRVHOST can be default but LHOST you must set it

    start by installing a different versions of windows in a virtual machine
    without updates and test it with metasploit.
    with a fresh install of windows 2000 (no updates) you can get like 10 exploits to work... you can test fast-track to make things easer... ( learn how to use nmap via command line)

    nmap -PN -p 135,139,445
    try that nmap scan with fast track on a windows 2000 box

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •