Metasploit mailing list archives
Problems using metasploit over ISA proxy
From: benheinkel at securitynerds.org (Ben Heinkel)
Date: Thu, 15 Jun 2006 01:13:52 -0700 (PDT)
Hello, Have recently had some time to try and play around with the PassiveX payload for metasploit. Unfortunately with not too much luck. WinXP SP2 box with Winamp 5.12 installed - connecting to a linux box running Metasploit with the winamp_playlist_unc exploit. On a direct connection using the win32_reverse payload, everything works as planned. Now when I try to route traffic from the XP box through an ISA proxy - the returned code fails to exploit winamp successfully (Winamp comes up, but no playlist loaded). The type of payload used here is irrelevant I think (have tried with both win32_reverse and win32_passivex though), because the exploit does not even happen. The proxy requires authentication, which I do manually at the start of the connection. Have looked at the proxy logs, and have not found any errors. Would ISA somehow 'sanitize' the exploit code rendering it useless once it reaches the XP box ? Any help would be appreciated. -bh
Current thread:
- Problems using metasploit over ISA proxy Ben Heinkel (Jun 15)
- Problems using metasploit over ISA proxy mmiller at hick.org (Jun 16)