Information Gathering & Exploiting MS06-067 using Nmap & Metasploit

Today i'm gonna try to exploit Windows machine which vulnerable with Remote Code Execution on SMB services.

Lets begin..

Yes, we got SMB service running on those machine (192.168.56.101). Lets check the vulnerability using nmap (again).

Yes its likely vulnerable. Now lets try to exploit it using Metasploit.

There are 1 exploit available in metasploit for this vulnerability.

Lets begin the setup...

Exploiting...

Voila.. We got meterpreter opened..

Lets check the system..

Yes.. we got the system.. :)


How to Fix :

• Block access to 139/TCP and 445/TCP ports
• Install updates from vendor’s site