Metasploit mailing list archives
console with arguments
From: jerome.athias at free.fr (Jerome Athias)
Date: Fri, 04 May 2007 22:55:19 +0200
Yep just seen this after restarting msfweb and going directly to the supplied URL ^_^ (exploit was launched before to test it) btw, it's a way... ;-) Cheers /JA H D Moore a ?crit :
Only works if no consoles have been allocated so far. I get the point, we should fix our XSS bugs :-) Is the intention to automatically launch an exploit, or automatically launch it and then interact with the console? -HD On Friday 04 May 2007 15:37, Jerome Athias wrote:Quite tricky but it does the job: http://127.0.0.1:55555/exploits/config?refname=windows:http:navicopa_ge t_overflow&payload=16&step=config&target=0&eopt_RHOST=127.0.0.1&eopt_RPO RT=80&popt_CMD=calc.exe&eopt_CHOST="><script>window.location="http://127 .0.0.1:55555/console/index/0";</script>
Current thread:
- console with arguments inbox-sc1 (May 04)
- console with arguments Jerome Athias (May 04)
- console with arguments H D Moore (May 04)
- console with arguments Jerome Athias (May 04)
- console with arguments inbox-sc1 (May 05)
- console with arguments H D Moore (May 05)
- console with arguments H D Moore (May 04)
- console with arguments Jerome Athias (May 04)
- console with arguments Jerome Athias (May 04)
- console with arguments H D Moore (May 04)
- console with arguments Jerome Athias (May 04)
- console with arguments inbox-sc1 (May 05)
- What about an update function? Konrad Hinkelmann (May 06)
- console with arguments H D Moore (May 04)