• Select Target
  • RHOST and LHOST
    		•

    Launching the MS04-011 Exploit




    Download 0,51 Mb.
    bet8/10
    Sana01.04.2021
    Hajmi0,51 Mb.
    #13832
    1   2   3   4   5   6   7   8   9   10

    Launching the MS04-011 Exploit


    1. In the Metasploit page, scroll down to "Microsoft LSASS MSO4-011 Overflow" and click it. This exploit can take over an unpatched Windows system—it does not depend on any additional vulnerable software.

    2. Scroll down to the "Select Target" section and click the victim operating system –Windows 2000.

    3. In the "Select Payload" section, click win32_reverse – this is a common payload that opens a Command Prompt on the victim machine, so you can type in commands of your choice to do anything you like on that machine.

    4. Get the RHOST and LHOST values you wrote down in the boxes on previous pages. Type them into the RHOST and LHOST boxes in the next screen, as shown to the right on this page. Then click the Exploit button near the bottom of the window.




    1. You should see an Exploit Output that appears only briefly, followed by a page that says The connection was reset. The exploit failed.

    2. To see why, look at your Windows 2000 machine’s desktop. You should see a McAfee antivirus warning, as shown to the right on this page.

    3. On the Windows 2000 virtual machine, close all windows.

    Download 0,51 Mb.
    1   2   3   4   5   6   7   8   9   10




    Download 0,51 Mb.