aka wow on ZATAZ.com
Metasploit Exploitation Scenarios – Scenario 3 Astaro Security Gateway & Dr.Web Antivirus
Third scenario of the Metasploit Exploitation Scenarios.
Here, the user is a standard user, protected by 5 countermeasures :
- Firewall rules how limit the outbound connexions only on special ports.
- Transparent HTTP/S Proxy for web surfing.
- Dual antivirus (Avira / Clamav) scanning for web surfing (useless in the case, due to the Astaro bugs).
- Dr.Web Antivirus on the target Windows XP.
- Windows Firewall on the target Windows XP.
I recommend you to read these related posts
- Metasploit Exploitation Scenarios – Scenario 2 Lavasoft Ad-Aware & Windows Defender
- Metasploit Meterpreter race condition against Avira anti-virus
- EDB-ID-16940 : Microsoft .NET Runtime Optimization Service Privilege Escalation
- Clamav antivirus blocking Yahoo, Apple HTML.IFrame-39
- Microsoft WMI Administration Tools ActiveX Buffer Overflow
- MS12-043 Microsoft XML Core Services Vulnerability Metasploit Demo
- CVE-2013-1347 Microsoft Internet Explorer 8 Vulnerability Metasploit Demo
- MS11-006 : Windows Thumbnails CreateSizedDIBSECTION Stack Buffer Overflow
- MS12-037 Internet Explorer Same ID Vulnerability Metasploit Demo
- MS10-073 : Microsoft Windows Keyboard Layout Privilege Escalation
