Penetration Testing mailing list archives

Re: problems to start a task with at.exe

From: "Mike Brentlinger" <mdbrentlinger () hotmail com>
Date: Wed, 14 Nov 2001 16:44:20 -0500

well.. the account thats running 'at' probably doenst have the permissionssee the mskb for some ideas... these may not be right but they should getyou on the right track


Allowing Non-Administrators to Use the AT command (Q124859)
http://support.microsoft.com/support/kb/articles/Q124/8/59.asp?LN=EN-US&SD=gn&FR=0&qry=scheduler%20service&rnk=4&src=DHCS_MSPSS_gn_SRCH&SPR=NTS40

Troubleshooting AT Command Using /k Switch (Q142040)
http://support.microsoft.com/support/kb/articles/Q142/0/40.asp?LN=EN-US&SD=gn&FR=0&qry=scheduler%20service&rnk=8&src=DHCS_MSPSS_gn_SRCH&SPR=NTS40

System and User Account Difference with AT Command(Q158825)http://support.microsoft.com/support/kb/articles/Q158/8/25.asp?LN=EN-US&SD=gn&FR=0&qry=scheduler%20service&rnk=17&src=DHCS_MSPSS_gn_SRCH&SPR=NTS40

-mdb

----Original Message Follows----
From: otaner () gmx ch
To: pen-test () securityfocus com
Subject: problems to start a task with at.exe
Date: Wed, 14 Nov 2001 14:50:18 +0100 (MET)

Hi,

I'm doing a pen test and I found a way over a system in the DMZ to establish
NBT-connections in the internal network (net use and stuff). My goal is to
get shell access to the internal network. So, my plan is to establish a

connection from the internal network to my system in the internet withnetcat. They

don't use a proxy, only a firewall that allows outgoing http and https. I

have local administrator rights on the pdc. So, I was able to copypwdump.exeto the pdc and now, I want to execute it (adding a job with at.exe). I cansee

the new job in the queue, but if the time is reached, the batch file was not
executed. I'm sure, the path is correct. I have the same problem with a
system in my lab. What can I do?

My commands:

at \\target 18:00 "c:\test.bat"
or
at \\target 18:00 /every:date "c:\test.bat"

Any help would be appreciated

Regards
Renato

--
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/



_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp


----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Current thread:

problems to start a task with at.exe otaner (Nov 14)
- RE: problems to start a task with at.exe Erik Hjelmstad (Nov 15)
- <Possible follow-ups>
- Re: problems to start a task with at.exe Mike Brentlinger (Nov 14)
  - Re: problems to start a task with at.exe Windex King (Nov 15)
- RE: problems to start a task with at.exe Dawes, Rogan (ZA - Johannesburg) (Nov 15)
- RE: problems to start a task with at.exe Black, Braden (Nov 15)