UPDATE: One thing that I didn’t mention in this post is that these files do NOT have to be saved to a share. So long as the file and the DLL reside in the same directory (think USB stick), the exploitation will succeed. /UPDATE So, yesterday I wrote a post detailing the exploitation of this [...]
Posts Tagged ‘msf’
Alternative DLL Hijacking Method
Posted: 25th August 2010 by Matt in code, hacks, securityTags: Administrator, attack, dll, hijack, Hijacking, metasploit, Meterpreter, msf, msfconsole, msfpayload, vulnerability, webdav, webdav_dll_hijacker
12
New DLL Hijacking Exploits (many!)
Posted: 24th August 2010 by Matt in code, hacks, news, securityTags: Administrator, attack, demo, demonstration, dll, example, examples, exploit, hijack, metasploit, Meterpreter, msf, msfconsole, network security audit, payload, tutorial, vulnerability, webdav_dll_hijacker, Windows, windows/browser/webdav_dll_hijacker
So, for those of you who do not follow the Metasploit project as closely as others, there was a new module included in the 10125 revision which came out on Monday. This module is kind of a huge deal, because it affects many, many Windows programs. I’ll demonstrate one in this post, but if you [...]
Windows ‘LNK’ Exploit Demonstration
Posted: 20th July 2010 by Matt in hacks, news, security, social engineeringTags: automated, browser, Command, exploit, LNK, metasploit, Microsoft, msf, msfconsole, network security audit, payload, remote, shell, Stuxnet, Temphid, URIPATH, victim, VirusBlokAda, vulnerable, W32.Stuxnet, W32.Temphid, Windows, wireless
Ok, so with all the hype surrounding this vulnerability, I figured that I would do a write up and give an example of how it works. Metasploit, as usual, makes it really simple. I really consider this to be a social engineering attack, because you need the victim to access a share. Yes, in the [...]