How to exploit IE 0day aka (Aurora) With MetaSploit?

January 19, 2010 20:16 pm · 0 comments

by Black

in Penetration Testing

Take a look at the new IE 0day exploit that was added to MetaSploit a couple of days ago.  It works for us and will work for you as well.  We have had a 100% success rate with IE6. IE7 was touch and go, but we could not get it to work with IE8.  In the end, it comes down to DEP being enabled or not.

What we used?

1. Backtrack 4 Final! Download here.

You need to use the new exploit for this bug, update Metasploit.

Set payload:

7044858ec2d5ec604fa4d7e75dfe5499 How to exploit IE 0day aka (Aurora) With MetaSploit?

Set srvhost, lhost, and lport accordingly.  You can also customize the uripath if you want. Otherwise, it defaults to a random string.

Just start the exploit and wait until the URL is launched on the victim machine.  If successful, you should get a session back and have full control!

You use it to check your local and remote vulnerability in organization. Find the holes before some does!

Workaround for IE zero day aka (Aurora):
1. Use authentication proxy for web surfing.
2. Upgrade to IE 8 if posible.
3. Update all your existing operating systems with the latest service packs.
4. Until then, you might want to refer this article which will help you to run Internet Explorer with lesser privileges.

Searches leading to this post:
metasploit aurora, metasploit windows vista exploits, vista exploits metasploit, IE7 exploit metasploit, aurora ie exploit source, no aurora exploit in 3 4 1 framework, metasploit ie7, metasploit exploits for vista, metasploit dll hijack howto, metasploit aurora download, metaploit aurora, exploit pentest gnome os, aurora metasploit how to, windows vista exploits metasploit

If you enjoyed this article, you might also like:

Previous post:

Next post: