Linux samba exploit using Metasploit and Nessus

**noizepulse** · 01-02-2011, 08:15 AM

Mod Edit: Youtube link removed.
Linux samba exploit using metasploit
Victim server :Metasploitable
Attacker:backtrack4
CVE:2007-2446
Payload: cmd/unix/reverse
http://blog.metasploit.com/2010/05/i...ploitable.html

Music by: Noizepulse
Track: Static movement
Mod Edit: MySpace link removed.

Overview

Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (smb_io_notify_option_type_data), (3) LsarAddPrivilegesToAccount (lsa_io_privilege_set), (4) NetSetFileSecurity (sec_io_acl), or (5) LsarLookupSids

**sickness** · 01-02-2011, 10:46 AM

No Youtube video allowed here: http://www.backtrack-linux.org/forum...ck-videos.html

Also I don't think we need a MySpace link.

Re-upload your video on Blip.TV or Vimeo than pm me the link and I will open the thread and replace the link.

BackTrack Linux - Penetration Testing Distribution

Thread: Linux samba exploit using Metasploit and Nessus

Thread Tools

Search Thread

Display

Hybrid View

Linux samba exploit using Metasploit and Nessus

Re: Linux samba exploit using Metasploit and Nessus

Similar Threads

Nessus bridge for Metasploit

samba(d), system-config-samba

[Nessus + Metasploit]

Nessus 4.2.2 and Metasploit v3.3.4

How using samba on my backtrack3, cause idont see cifs/samba for share folder.

Posting Permissions