Slashdot Mirror


Point, Click, Root.

An anonymous reader writes "The Metasploit Project just released version 2.2 of the Metasploit Framework. This release includes a VNC server payload that can be used with almost any of the Windows exploits. The scary thing about this payload is that the VNC server executes as a new thread in the exploited process; without writing any files to the disk drive. Is this the end as we know it for simple remote command shell exploits? A couple articles have already mentioned this project."

4 of 216 comments (clear)

  1. Works when the machine is locked too by Anonymous Coward · · Score: 5, Interesting

    The cool thing about the VNC payload is that it works if the machine is not logged in, or if the screen is locked.

    1. Re:Works when the machine is locked too by Ytsejam-03 · · Score: 5, Interesting
      The cool thing about the VNC payload is that it works if the machine is not logged in, or if the screen is locked.
      So does anything else that exploits a service running as LocalSystem. As long as the service is running, it does not matter the workstation is locked or not logged in.

      I assume you're saying this because you saw the screen shot linked in the summary. Notice that it says "System" at the top of the start menu. This is not the user's desktop, and you won't get to see the user's running apps. You'll have to exploit something running in the user's session to do that.

      This won't let you do anything that you could not already have done by installing, say, netcat with the same exploit.
  2. Umm... by Trolling4Dollars · · Score: 5, Interesting

    How does something start off as a "portable network game" and end up as a f*cking remote GUI root?

    1. Re:Umm... by Otter · · Score: 5, Interesting
      How does something start off as a "portable network game" and end up as a f*cking remote GUI root?

      I suppose, the same way Goldeneye started as a game and ended up as the boot disk for Xbox Linux...