Penetration Testing mailing list archives
Re: Exploiting IPC$
From: Victor Bishop <rigamortus2003 () gmail com>
Date: Tue, 29 Dec 2009 14:13:26 -0600
On 12/28/2009 5:11 AM, Himanshu Goyal wrote:
Hello, Can somebody share how to exploit port 445. I am doing a VA and found port 445 open. When I try to connect IPC$, it says access denied. Thanks Cheers- Himanshu ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review Board Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified. http://www.iacertification.org ------------------------------------------------------------------------
Himanshu,Could be quite a few things preventing access to that port, but I will give you a couple of solutions that have solved this problem for me in the past. 1) The Box (Computer) you are attempting to access is using Windows XP (Service Pack 2), which enables the firewall by default. Or, 2) The Box is running SQL Server, which inherently needs port 445 to listen for client requests in effect "tying up" the port, much like a busy phone signal. This is a very common exploit so you should be able to find plenty of solutions googling "port 445 exploit." Here are some useful links to get you started.
1) http://support.microsoft.com/kb/839269 2) http://support.microsoft.com/kb/840634 3) http://www.milw0rm.com/exploits/3746 4) http://www.linklogger.com/TCP445Scan3.htm There you go. Hope this helps. Good luck. -VB ------------------------------------------------------------------------ This list is sponsored by: Information Assurance Certification Review BoardProve to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT and CEPT certs require a full practical examination in order to become certified.
http://www.iacertification.org ------------------------------------------------------------------------
Current thread:
- Exploiting IPC$ Himanshu Goyal (Dec 29)
- Re: Exploiting IPC$ τ∂υƒιφ * (Dec 29)
- Re: Exploiting IPC$ mike (Dec 29)
- Re: Exploiting IPC$ Victor Bishop (Dec 29)
- Re: Exploiting IPC$ Jerome Athias (Dec 29)