Penetration Testing mailing list archives

RE: problems to start a task with at.exe

From: "Erik Hjelmstad" <ehjelmstad () ebiz-tech com>
Date: Wed, 14 Nov 2001 17:25:19 -0700

I've had similar problems getting the at command to do what I wanted.  Try
these two things:

1) Make sure that the c:\test.bat file has fully qualified paths and names
in it.  Don't use cmd.exe or nc.exe, but c:\winnt\system32\cmd.exe and
c:\nc.exe for example.

2) The other item is that I think you need to remove the double quotes from
your syntax.  Try

  at \\target 18:00 c:\test.bat

instead of

  at \\target 18:00 "c:\test.bat"

Erik Hjelmstad

-----Original Message-----
From: otaner () gmx ch [mailto:otaner () gmx ch]
Sent: Wednesday, November 14, 2001 6:50 AM
To: pen-test () securityfocus com
Subject: problems to start a task with at.exe


Hi,

I'm doing a pen test and I found a way over a system in the DMZ to establish
NBT-connections in the internal network (net use and stuff). My goal is to
get shell access to the internal network. So, my plan is to establish a
connection from the internal network to my system in the internet with
netcat. They
don't use a proxy, only a firewall that allows outgoing http and https. I
have local administrator rights on the pdc. So, I was able to copy
pwdump.exe
to the pdc and now, I want to execute it (adding a job with at.exe). I can
see
the new job in the queue, but if the time is reached, the batch file was not
executed. I'm sure, the path is correct. I have the same problem with a
system in my lab. What can I do?

My commands:

at \\target 18:00 "c:\test.bat"
or
at \\target 18:00 /every:date "c:\test.bat"

Any help would be appreciated

Regards
Renato

--
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/



----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Current thread:

problems to start a task with at.exe otaner (Nov 14)
- RE: problems to start a task with at.exe Erik Hjelmstad (Nov 15)
- <Possible follow-ups>
- Re: problems to start a task with at.exe Mike Brentlinger (Nov 14)
  - Re: problems to start a task with at.exe Windex King (Nov 15)
- RE: problems to start a task with at.exe Dawes, Rogan (ZA - Johannesburg) (Nov 15)
- RE: problems to start a task with at.exe Black, Braden (Nov 15)