MS08-067 vulnerability reproduction

tags: windows xp  Loophole  shell

Vulnerability introduction:

The MS08-067 vulnerability will affect all Windows systems except Windows Server 2008 Core, including: Windows 2000/XP/Server 2003/Vista/Server 2008 versions, and even Windows 7 Pro in the testing phase-Beta. (From Baidu Encyclopedia)

harm:

Hackers can use this vulnerability to send remote specially crafted RPC requests to computers on the network, and can execute remote codes on the computer without authentication. This means that even if your computer has an administrator password, you can only be at the mercy of hackers. (From Baidu Encyclopedia)


For details of the vulnerability, please refer to: Microsoft Security BulletinKB958644


As a classic vulnerability, MS08-067 is very suitable for beginners, so this article mainly introduces how to use Metasploit to reproduce the vulnerability.


This experiment is done in a virtual machine, the virtual machine uses VirtualBox, and the virtual machine network uses the Host-Only network.

Target machine: 192.168.56.101 (WindowsXP)

Attacker: 192.168.56.102 (Kali Linux)


First open msfconsole under Kali, and then enter the vulnerability query command: search 08-067


Start calling that vulnerability:


Open the options and view the options that need to be set:

It is found that the IP address of the target machine needs to be set, and the target IP address is set


Start querying the payload to be used



Call the required payload


Check the options to be set by the payload

Found that you need to set your own host IP, set it


Set the host IP and check whether the setting is successful:


Use Nmap to scan the target machine to view its version information:


Check the version that the payload is adapted to



Set the payload of the corresponding version of the target machine, where the target machine corresponds to the seventh one, choose according to the actual situation


carried out:


Found that the execution is successful, enter the shell to obtain the target machine permissions:

It is found that the permission obtained is a system


Get the username of the target machine:


Perform permission verification, try to add a user, user name: hahaha


Enter the target machine to check and find that there is a newly added user hahaha



Delete the hahaha user of the target machine in the host:

successfully deleted


Use the target machine to check whether the deletion is successful:

Found that the delete check was successful!



This recurrence is complete!



Intelligent Recommendation

MS08-067 vulnerability remote overflow intrusion test

The full name of the MS08-067 vulnerability is "Windows Server Service RPC Request Buffer Overflow Vulnerability." If a user receives a specially crafted RPC request on an affected system, t...

#windowsxpsp3 system MS08-067 vulnerability test

#windowsxpsp3 system MS08-067 vulnerability test Vulnerability description The full name of the MS08-067 vulnerability is "Windows Server Service RPC Request Buffer Overflow Vulnerability". ...

MS08-067 vulnerability penetration attack process

lab environment kali linux2.0 win-xp sp3 Steps 1. Execute in the Kali Linux command line 2. Query MS08067 Vulnerability 3. Using Exploit / Windows / SMB / MS08_067_Netapi and view Options 4. Using Pay...

[Vulnerability recurrence] MS08-067 classic remote overflow vulnerability recurrence

ms08-067 introduction The MS08-067 vulnerability will affect all Windows systems except Windows Server 2008 Core, including: Windows 2000/XP/Server 2003/Vista/Server 2008 versions, and even Windows 7 ...

MS08-067 Remote Overflow Vulnerability (CVE-2008-4250)

MS08-067 Remote Overflow Vulnerability   Brief description of the vulnerability principle The attacker uses the default open SMB service port 445 of the victim host to send a special RPC (Remote ...

More Recommendation

Using ms08-067 vulnerability to remotely control Windows XP

1. Find ms08-067: 2. Use: 3. Select the payload: (At the beginning, there is a difference between windows / shell / ... and windows / meterpreter / reverse_tpc) 4. View options (yes is required): 5. E...

The process of using metasploit (MSF) to exploit the ms08-067 vulnerability of windows

0x01 experimental environment Attack machine: kali linux ip:10.10.10.131 Target machine: windows server 2003 ip:10.10.10.130 0x02 configure exploit msf > use exploit/windows/smb/ms08_067_netapi&nbs...

Windows XP SP3 (MS08-067 Vulnerability Revision and Utilization)

Put the previous experiments and written in the note in the cloud, put it on the CSDN First, an experimental environment Target: Windows XP SP3 Professional (Close Windows self-contained firewall!!!) ...

Windows XP SP2 (MS08-067 vulnerability reappearance and utilization)

MS08-067 Vulnerability: It is a vulnerability in a remote process call (RPC) service. When calling the NetPathCanonicalize function in the SMB channel, the vulnerability is triggered, causing the use ...

MS08-067 (CVE-2008-4250) Remote command execution vulnerability

Articles directory Foreword Introduction Second, influence Third, vulnerability harm Fourth, local reproduction Five, patch number 6. Windows Server 2003 SP2 Chinese version Utilization method 7. Deep...

Copyright  DMCA © 2018-2026 - All Rights Reserved - www.programmersought.com  User Notice

Top