Penetration Testing mailing list archives

Re: Pen Test help

From: H D Moore <sflist () digitaloffense net>
Date: Sat, 16 Jul 2005 14:38:51 -0500

Could it be that the firewall is preventing you from accessing the 
win32_bind port and blocking the outbound connection from win32_reverse? 
You may want to try exploiting this from an external system and using 
win32_reverse with a different LPORT value (53, 25, 80, etc). If the 
"check" command in the WebDAV exploit thinks the system is vulnerable, 
there is a pretty good chance that it is. 

-HD

On Saturday 16 July 2005 10:14, Juda Barnes wrote:

I allready used that I am unable to get win32_reverse or win32_bind

With the two exploits nsiislog_post   and webdav_ntdll

Any other ideas ?

-----Original Message-----
From: er t [mailto:er587 () hotmail com]
Sent: Friday, July 15, 2005 5:48 PM
To: securityfocus () mymail pent900 com; pen-test () securityfocus com
Subject: RE: Pen Test help

Try Metasploit

NSIISLOG.DLL  -
http://www.metasploit.com/projects/Framework/exploits.html#iis_nsiislog
_post WebDav Remote exploit  MS03-007 -
http://www.metasploit.com/projects/Framework/exploits.html#iis50_webdav
_ntdl l

Current thread:

Pen Test help Juda Barnes (Jul 14)
- <Possible follow-ups>
- RE: Pen Test help er t (Jul 15)
  - RE: Pen Test help Juda Barnes (Jul 16)
    - Re: Pen Test help H D Moore (Jul 16)
    - RE: Pen Test help Juda Barnes (Jul 17)
    - Re: Pen Test help H D Moore (Jul 18)
- RE: Pen Test help Stephane Auger (Jul 18)
  - Re: Pen Test help H D Moore (Jul 18)
- FW: Pen Test help Juda Barnes (Jul 18)
- RE: Pen Test help Stephane Auger (Jul 18)
- RE: Pen Test help Roberts, Scott (Jul 18)