Metasploit mailing list archives
Re: smb_login and "security = share"
From: HD Moore <hdm () metasploit com>
Date: Thu, 11 Feb 2010 17:52:23 -0600
On 2/11/2010 5:33 PM, Nicob wrote:
Hello, it seems that Metasploit (svn r8458) can't fully login to a Samba share (and exploit the symlink vulnerability) when the Samba "security" option is set to "share" (instead of "user"). However, the exploit based on kingcope's modified smbclient is working fine in both situations.
<snip>
[*] Connecting to the server... [*] Trying to mount writeable share 'NAS'... [-] Auxiliary failed: Rex::Proto::SMB::Exceptions::ErrorCode The server responded with error: STATUS_WRONG_PASSWORD (Command=117 WordCount=0)
Thanks Nicob! I should be able to sort it out this evening, likely just a wrong flag set somewhere while in 'guest' mode. -HD _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- smb_login and "security = share" Nicob (Feb 11)
- Re: smb_login and "security = share" HD Moore (Feb 11)
- Re: smb_login and "security = share" Nicob (Feb 11)
- Re: smb_login and "security = share" Nicob (Feb 13)
- Re: smb_login and "security = share" HD Moore (Feb 11)