Sızma Testleri Açığı bulunan server'a nasıl sızılır?

S

sarptuRA

Yeni üye
2 Eki 2023
4
0
nmap üzerinden yaptığım bir taramada çok fazla açık buldum bunu metasploitte nasıl kullanıcağım konusunda yardımcı olurmusun

cpe:/o:redhat:enterprise_linux:7:
| SSV:93135 10.0 IBM Informix Dynamic Server Open Admin Tool RCE (CVE-2017-1092) - exploit database | Vulners.com *EXPLOIT*
| SSV:92513 10.0 https://vulners.com/seebug/SSV:92513 *EXPLOIT*
| SSV:92510 10.0 https://vulners.com/seebug/SSV:92510 *EXPLOIT*
| SSV:92405 10.0 https://vulners.com/seebug/SSV:92405 *EXPLOIT*
| SSV:89724 10.0 Samba NetLogon未初始化指针漏洞(CVE-2015-0240) - exploit database | Vulners.com *EXPLOIT*
| PACKETSTORM:165816 10.0 https://vulners.com/packetstorm/PACKETSTORM:165816 *EXPLOIT*
| PACKETSTORM:143369 10.0 https://vulners.com/packetstorm/PACKETSTORM:143369 *EXPLOIT*
| PACKETSTORM:139491 10.0 https://vulners.com/packetstorm/PACKETSTORM:139491 *EXPLOIT*
| PACKETSTORM:139476 10.0 https://vulners.com/packetstorm/PACKETSTORM:139476 *EXPLOIT*
| PACKETSTORM:138678 10.0 https://vulners.com/packetstorm/PACKETSTORM:138678 *EXPLOIT*
| EXPLOITPACK:D127040CBAC5DBD24F717F40D86D1AF6 10.0 Samba 3.6.2 (x86) - Denial of Service (PoC) - exploit database | Vulners.com *EXPLOIT*
| EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D 10.0 https://vulners.com/exploitpack/EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D *EXPLOIT*
| EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 10.0 https://vulners.com/exploitpack/EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 *EXPLOIT*
| EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 10.0 https://vulners.com/exploitpack/EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 *EXPLOIT*
| EXPLOITPACK:069C31B8DD5A351921E96252215466D8 10.0 https://vulners.com/exploitpack/EXPLOITPACK:069C31B8DD5A351921E962522154
cpe:/o:redhat:enterprise_linux:7:
| SSV:93135 10.0 IBM Informix Dynamic Server Open Admin Tool RCE (CVE-2017-1092) - exploit database | Vulners.com *EXPLOIT*
| SSV:92513 10.0 https://vulners.com/seebug/SSV:92513 *EXPLOIT*
| SSV:92510 10.0 https://vulners.com/seebug/SSV:92510 *EXPLOIT*
| SSV:92405 10.0 https://vulners.com/seebug/SSV:92405 *EXPLOIT*
| SSV:89724 10.0 Samba NetLogon未初始化指针漏洞(CVE-2015-0240) - exploit database | Vulners.com *EXPLOIT*
| PACKETSTORM:165816 10.0 https://vulners.com/packetstorm/PACKETSTORM:165816 *EXPLOIT*
| PACKETSTORM:143369 10.0 https://vulners.com/packetstorm/PACKETSTORM:143369 *EXPLOIT*
| PACKETSTORM:139491 10.0 https://vulners.com/packetstorm/PACKETSTORM:139491 *EXPLOIT*
| PACKETSTORM:139476 10.0 https://vulners.com/packetstorm/PACKETSTORM:139476 *EXPLOIT*
| PACKETSTORM:138678 10.0 https://vulners.com/packetstorm/PACKETSTORM:138678 *EXPLOIT*
| EXPLOITPACK:D127040CBAC5DBD24F717F40D86D1AF6 10.0 Samba 3.6.2 (x86) - Denial of Service (PoC) - exploit database | Vulners.com *EXPLOIT*
| EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D 10.0 https://vulners.com/exploitpack/EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D *EXPLOIT*
| EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 10.0 https://vulners.com/exploitpack/EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 *EXPLOIT*
| EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 10.0 https://vulners.com/exploitpack/EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 *EXPLOIT*
| EXPLOITPACK:069C31B8DD5A351921E96252215466D8 10.0 https://vulners.com/exploitpack/EXPLOITPACK:069C31B8DD5A351921E962522154
açıklardan bazıları bunlar yardımcı olursan çok sevinirim
 
Moderatör tarafında düzenlendi:
Tarihe göre sırala Oylara göre sırala
V3YS0Z

V3YS0Z

Deneyimli Moderatör
3 Şub 2015
2,498
661
Türkiye Cumhuriyeti
sarptuRA' Alıntı:
nmap üzerinden yaptığım bir taramada çok fazla açık buldum bunu metasploitte nasıl kullanıcağım konusunda yardımcı olurmusun

cpe:/o:redhat:enterprise_linux:7:
| SSV:93135 10.0 IBM Informix Dynamic Server Open Admin Tool RCE (CVE-2017-1092) - exploit database | Vulners.com *EXPLOIT*
| SSV:92513 10.0 https://vulners.com/seebug/SSV:92513 *EXPLOIT*
| SSV:92510 10.0 https://vulners.com/seebug/SSV:92510 *EXPLOIT*
| SSV:92405 10.0 https://vulners.com/seebug/SSV:92405 *EXPLOIT*
| SSV:89724 10.0 Samba NetLogon未初始化指针漏洞(CVE-2015-0240) - exploit database | Vulners.com *EXPLOIT*
| PACKETSTORM:165816 10.0 https://vulners.com/packetstorm/PACKETSTORM:165816 *EXPLOIT*
| PACKETSTORM:143369 10.0 https://vulners.com/packetstorm/PACKETSTORM:143369 *EXPLOIT*
| PACKETSTORM:139491 10.0 https://vulners.com/packetstorm/PACKETSTORM:139491 *EXPLOIT*
| PACKETSTORM:139476 10.0 https://vulners.com/packetstorm/PACKETSTORM:139476 *EXPLOIT*
| PACKETSTORM:138678 10.0 https://vulners.com/packetstorm/PACKETSTORM:138678 *EXPLOIT*
| EXPLOITPACK:D127040CBAC5DBD24F717F40D86D1AF6 10.0 Samba 3.6.2 (x86) - Denial of Service (PoC) - exploit database | Vulners.com *EXPLOIT*
| EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D 10.0 https://vulners.com/exploitpack/EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D *EXPLOIT*
| EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 10.0 https://vulners.com/exploitpack/EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 *EXPLOIT*
| EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 10.0 https://vulners.com/exploitpack/EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 *EXPLOIT*
| EXPLOITPACK:069C31B8DD5A351921E96252215466D8 10.0 https://vulners.com/exploitpack/EXPLOITPACK:069C31B8DD5A351921E962522154
cpe:/o:redhat:enterprise_linux:7:
| SSV:93135 10.0 IBM Informix Dynamic Server Open Admin Tool RCE (CVE-2017-1092) - exploit database | Vulners.com *EXPLOIT*
| SSV:92513 10.0 https://vulners.com/seebug/SSV:92513 *EXPLOIT*
| SSV:92510 10.0 https://vulners.com/seebug/SSV:92510 *EXPLOIT*
| SSV:92405 10.0 https://vulners.com/seebug/SSV:92405 *EXPLOIT*
| SSV:89724 10.0 Samba NetLogon未初始化指针漏洞(CVE-2015-0240) - exploit database | Vulners.com *EXPLOIT*
| PACKETSTORM:165816 10.0 https://vulners.com/packetstorm/PACKETSTORM:165816 *EXPLOIT*
| PACKETSTORM:143369 10.0 https://vulners.com/packetstorm/PACKETSTORM:143369 *EXPLOIT*
| PACKETSTORM:139491 10.0 https://vulners.com/packetstorm/PACKETSTORM:139491 *EXPLOIT*
| PACKETSTORM:139476 10.0 https://vulners.com/packetstorm/PACKETSTORM:139476 *EXPLOIT*
| PACKETSTORM:138678 10.0 https://vulners.com/packetstorm/PACKETSTORM:138678 *EXPLOIT*
| EXPLOITPACK:D127040CBAC5DBD24F717F40D86D1AF6 10.0 Samba 3.6.2 (x86) - Denial of Service (PoC) - exploit database | Vulners.com *EXPLOIT*
| EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D 10.0 https://vulners.com/exploitpack/EXPLOITPACK:BD83B747C6C6A417D97824A1D81FAA5D *EXPLOIT*
| EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 10.0 https://vulners.com/exploitpack/EXPLOITPACK:55F22FE44A0D6F3F9005C334804B2317 *EXPLOIT*
| EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 10.0 https://vulners.com/exploitpack/EXPLOITPACK:3D8D46697DAADEA8249E37B2A2F09AE3 *EXPLOIT*
| EXPLOITPACK:069C31B8DD5A351921E96252215466D8 10.0 https://vulners.com/exploitpack/EXPLOITPACK:069C31B8DD5A351921E962522154
açıklardan bazıları bunlar yardımcı olursan çok sevinirim
Genişletmek için tıkla ...
Merhaba sarptuRA,

5. Sırada yer alan | SSV:89724 10.0 Samba NetLogon未初始化指针漏洞(CVE-2015-0240) - exploit database | Vulners.com *EXPLOIT* açığına göz atmanı ve derinlemesine araştırmanı öneririm. Bu, Samba'nın önceki sürümlerinde bulunan ciddi bir güvenlik açığıdır.

İyi Forumlar...
 
Oyla 0 Downvote
Üst

Turkhackteam.org internet sitesi 5651 sayılı kanun’un 2. maddesinin 1. fıkrasının m) bendi ile aynı kanunun 5. maddesi kapsamında "Yer Sağlayıcı" konumundadır. İçerikler ön onay olmaksızın tamamen kullanıcılar tarafından oluşturulmaktadır. Turkhackteam.org; Yer sağlayıcı olarak, kullanıcılar tarafından oluşturulan içeriği ya da hukuka aykırı paylaşımı kontrol etmekle ya da araştırmakla yükümlü değildir. Türkhackteam saldırı timleri Türk sitelerine hiçbir zararlı faaliyette bulunmaz. Türkhackteam üyelerinin yaptığı bireysel hack faaliyetlerinden Türkhackteam sorumlu değildir. Sitelerinize Türkhackteam ismi kullanılarak hack faaliyetinde bulunulursa, site-sunucu erişim loglarından bu faaliyeti gerçekleştiren ip adresini tespit edip diğer kanıtlarla birlikte savcılığa suç duyurusunda bulununuz.