1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

MS10-046 exploit

Discussion in 'Ethical hacking' started by katakana, Feb 9, 2012.

  1. katakana

    katakana New Member

    Joined:
    Feb 9, 2012
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    0
    hello i'm new, anyone here know about MS10-046 exploit?
     
  2. Scripting

    Scripting John Hoder

    Joined:
    Jun 29, 2010
    Messages:
    421
    Likes Received:
    57
    Trophy Points:
    0
    Occupation:
    School for life
    Location:
    /root
    Yes, I know. It exploits a vulnerability in the handling of Windows Shortcut files (.LNK) that contain an icon resource pointing to a malicious DLL. This module creates a WebDAV service that can be used to run an arbitrary payload when accessed as a UNC path. :)
     
  3. katakana

    katakana New Member

    Joined:
    Feb 9, 2012
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    0
    so it's allow the hacker to modify the service, am i right?
     
  4. Scripting

    Scripting John Hoder

    Joined:
    Jun 29, 2010
    Messages:
    421
    Likes Received:
    57
    Trophy Points:
    0
    Occupation:
    School for life
    Location:
    /root
    Yes, exactly.
     
  5. katakana

    katakana New Member

    Joined:
    Feb 9, 2012
    Messages:
    3
    Likes Received:
    0
    Trophy Points:
    0
    how to check or scan this vulnerability and how it's work?
     
  6. Scripting

    Scripting John Hoder

    Joined:
    Jun 29, 2010
    Messages:
    421
    Likes Received:
    57
    Trophy Points:
    0
    Occupation:
    School for life
    Location:
    /root
    I'm sure you can use Metasploit framework to exploit it. But if you want to get some info about this vulnerability, i'm sure you will find tons on google, try to search.
     

Share This Page