Gurou
Apr 29 2004, 05:53 PM
Windows Lsasrv.dll Remote Universal Exploit XP/2K (MS04-011)
http://www.k-otik.com/exploits/04292004.HO...asrv-expl.c.php * Tested on
* - Windows XP Professional SP0 English version
* - Windows XP Professional SP0 Russian version
* - Windows XP Professional SP1 English version
* - Windows XP Professional SP1 Russian version
* - Windows 2000 Professional SP2 English version
* - Windows 2000 Professional SP2 Russian version
* - Windows 2000 Professional SP4 English version
* - Windows 2000 Professional SP4 Russian version
* - Windows 2000 Advanced Server SP4 English version
* - Windows 2000 Advanced Server SP4 Russian version
Universal RoX
SlashZero
Apr 29 2004, 06:02 PM
anyone got that one compiled ?
i don't want a compiled one.. just an information with what compiler i can get this to run... tried lcc32 and cl but non worked :/
RizL4
Apr 29 2004, 06:26 PM
anyone no what i can do too stop this exploit restarting my computer?
ScriptGod
Apr 29 2004, 06:39 PM
edit the includes to
#include <stdio.h>
#include <stdlib.h>
#include <windows.h>
and you can compile it... but it's not working against geman versions
cyrixx
Apr 29 2004, 06:41 PM
| QUOTE (RizL4 @ Apr 29 2004, 06:26 PM) |
| anyone no what i can do too stop this exploit restarting my computer? |
if you get a restart, type
Gurou
Apr 29 2004, 07:32 PM
| QUOTE (ScriptGod @ Apr 29 2004, 06:39 PM) |
| ... but it's not working against geman versions |
tested and works against English and french XPz
temp
Apr 29 2004, 07:46 PM
| QUOTE (ScriptGod) |
| and you can compile it... but it's not working against geman versions |
works great on german xp/2k!
Gurou
Apr 29 2004, 07:56 PM
| QUOTE (temp @ Apr 29 2004, 07:46 PM) |
| works great on german xp/2k! |
worked "on" or "against" german xp/2k ?
did you succeed hacking german windows ?
ScriptGod
Apr 29 2004, 07:59 PM
| QUOTE (Gurou @ Apr 29 2004, 07:56 PM) |
| QUOTE (temp @ Apr 29 2004, 07:46 PM) | | works great on german xp/2k! |
worked "on" or "against" german xp/2k ?
did you succeed hacking german windows ?
|
my german 2k crashes with this exploits, so it is not universal under german 2k
but xp is working
Paul
Apr 30 2004, 10:11 AM
msdev
| CODE |
Deleting intermediate files and output files for project 'exploit - Win32 Debug'.
--------------------Configuration: exploit - Win32 Debug--------------------
Compiling...
exploit.c
d:\forum\exploit.c(279) : warning C4047: 'initializing' : 'int ' differs in levels of indirection from 'void *'
d:\forum\exploit.c(531) : error C2061: syntax error : identifier 'droits'
d:\forum\exploit.c(531) : error C2059: syntax error : ';'
d:\forum\exploit.c(531) : error C2018: unknown character '0xe9'
d:\forum\exploit.c(531) : error C2061: syntax error : identifier 'serv'
d:\forum\exploit.c(531) : error C2059: syntax error : ';'
d:\forum\exploit.c(531) : error C2018: unknown character '0xe9'
d:\forum\exploit.c(531) : error C2018: unknown character '0xa9'
d:\forum\exploit.c(531) : error C2143: syntax error : missing '{' before 'constant'
d:\forum\exploit.c(531) : error C2059: syntax error : '<Unknown>'
d:\forum\exploit.c(531) : error C2018: unknown character '0xe9'
d:\forum\exploit.c(535) : error C2018: unknown character '0xe9'
Error executing cl.exe.
exploit.exe - 11 error(s), 1 warning(s) |
Bah.
nowhere
Apr 30 2004, 12:56 PM
| QUOTE (SlashZero @ Apr 29 2004, 06:02 PM) |
anyone got that one compiled ?
i don't want a compiled one.. just an information with what compiler i can get this to run... tried lcc32 and cl but non worked :/ |
If u are to stupid to compile this, go leave the scene, go out met friends, play soccer but leave!
this request i cant hear again, please compile it i cant or which port i must scan!
(filtered) shit scrípt kiddies!
greetz nowhere
agathos
Apr 30 2004, 03:56 PM
win2k doesnt working because its the wrong offset that the exploit is use
nuorder
Apr 30 2004, 04:14 PM
compiled fine in VS c++
exploited test winxp sp1 box
oh crap it works
patch patch patch.....
Gurou
Apr 30 2004, 04:46 PM
| QUOTE (agathos @ Apr 30 2004, 03:56 PM) |
| win2k doesnt working because its the wrong offets that the exploit is use |
explain your idea plez
(you talk about a specific language ? or win2k all ?)
agathos
Apr 30 2004, 04:49 PM
win2k all just read my post @ the download section
chris105
Apr 30 2004, 08:12 PM
Guys please dont flame me or mock me, if you dont have anything constructive to say dont say it, i tried to compile this because people asking for compiled copies annoyes me too, i know very little about c++ (just finished learning arrays) and have several build errors in vc++ 6, anyone can help ??
exploit2.c
C:\Documents and Settings\Games\exploit2.c(1) : error C2143: syntax error : missing '{' before '-'
C:\Documents and Settings\Games\exploit2.c(1) : error C2059: syntax error : '-'
C:\Documents and Settings\Games\exploit2.c(41) : error C2017: illegal escape sequence
C:\Documents and Settings\Games\exploit2.c(51) : error C2017: illegal escape sequence
C:\Documents and Settings\Games\exploit2.c(60) : error C2017: illegal escape sequence
C:\Documents and Settings\Games\exploit2.c(64) : error C2017: illegal escape sequence
C:\Documents and Settings\Games\exploit2.c(64) : error C2017: illegal escape sequence
C:\Documents and Settings\Games\exploit2.c(71) : warning C4138: '*/' found outside of comment
e:\program files\microsoft visual studio\vc98\include\excpt.h(92) : error C2143: syntax error : missing '{' before '__cdecl'
C:\Documents and Settings\Games\exploit2.c(277) : warning C4047: 'initializing' : 'int ' differs in levels of indirection from 'void *'
C:\Documents and Settings\Games\exploit2.c(284) : warning C4013: 'printf' undefined; assuming extern returning int
C:\Documents and Settings\Games\exploit2.c(345) : warning C4013: 'sprintf' undefined; assuming extern returning int
Error executing cl.exe.
exploit2.obj - 8 error(s), 4 warning(s)
chris105
Apr 30 2004, 08:26 PM
Ok i got it working
, i suppose i just use netcat to connect to the hacked pc, correct ?
101
Apr 30 2004, 08:31 PM
2k offsets are wrong like somes also noticed it.
thats a bit limited the ipc$ null only on port 445 in this exploit so.
better is to update sbaa code universally for both os , 139/445 port >:]
gsicht
May 1 2004, 12:03 PM
the xp offset is the right one. it worked on my german xp, too. but i don't get a shell. the port is open but there's no shell. wrong shellcode? i'll test other ones.
wo had success?
Killaloop
May 1 2004, 01:28 PM
what ever are you people saying?
exploit works fine on win2k and xp (also on german xp).
so first: Test
Second: talk
so believe in your wrong offsets, but I tested it and it works fine
ScriptGod
May 1 2004, 02:09 PM
| QUOTE (Killaloop @ May 1 2004, 01:28 PM) |
what ever are you people saying?
exploit works fine on win2k and xp (also on german xp).
so first: Test
Second: talk
so believe in your wrong offsets, but I tested it and it works fine |
I tested this on 3 german vm ware Win2k machines with different service packs -> crash
XP works
binary_hashes
May 1 2004, 05:32 PM
HI ALL
I WANT THE SAME UNIVERSAL LSASRV EXPLOIT BUT ALSO HAVING AN OPTION FOR PORT 139 TO CONNECT.PLZZ UPLOAD IT IF ANY IS HAVING IT.
THANKZZZZ
mortello
May 1 2004, 08:56 PM
| QUOTE (binary_hashes @ May 1 2004, 05:32 PM) |
HI ALL
I WANT THE SAME UNIVERSAL LSASRV EXPLOIT BUT ALSO HAVING AN OPTION FOR PORT 139 TO CONNECT.PLZZ UPLOAD IT IF ANY IS HAVING IT.
THANKZZZZ |
Just change it yourself in the code, it should work lol
chris105
May 2 2004, 11:00 AM
So how the (filtered) would one program shell code ?
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please
click here.
