Bug #800

kitrap0d.rb doesn't work on win2k - applies to some SPs of XP too

Added by James Nobis 6 months ago. Updated 19 days ago.

Status:New Start:01/31/2010
Priority:Normal Due date:
Assigned to:Joshua Drake % Done:

0%
Category:exploit bugs
Target version:Metasploit 3.5
Resolution:

Description

A comment in the code vdmexploit.c states:
"Windows 2000 forces the thread to exit with 0x80 if Padding3 is filled with junk. With a buffer full of NULLs, the exploit never finds the right size. This will require more work to resolve, for just keep the padding zero'd."

This same exit code appears in unpatched Windows XP Pro and Windows XP Pro SP1/SP1a. It does not appear in windows XP Pro SP2 or SP3.

Related issues

related to Bug #801: kitrap0d.rb os signature updates New 01/31/2010

History

Updated by HD Moore 6 months ago

  • Target version set to 18

Updated by HD Moore 5 months ago

  • Target version changed from 18 to Metasploit 3.4.0

Updated by James Lee 2 months ago

  • Target version changed from Metasploit 3.4.0 to Metasploit 3.4.1

Updated by James Lee 19 days ago

  • Target version changed from Metasploit 3.4.1 to Metasploit 3.5

Also available in: Atom PDF