Friday, June 10, 2016

METASPLOIT - Windows 7 - Exploitation


- Layout for this exercise:

- Bad Blue es is File Sharing web service application available for Windows systems that allows users to share files.

- However, this application suffers from a vulnerability that can be exploited with a stack buffer overflow, affecting the PassThru functionality in ext.dll, for versions 2.72b and earlier:

- Once BadBlue downloaded, installed and accepted the License agreement, finally it is working on Windows 7, running on port TCP 80:

- The attacker detects that Bad Blue web server is running on victim's port 80:

- Searching exploits for BadBlue into the Metasploit Framework:

- Let's try this exploit:

- Options for this exploit are simple:

- The remote host is set to the victim's IP:

- The exploitation is successful: