|
|
|
|
Menu |
|
|
Home |
| |
|
Discussions |
| |
|
Tools |
| |
|
Affiliates |
| |
|
Content |
| |
|
Info |
| | |
|
|
|
|
|
User Info |
|
Membership:
Latest: MichaelSnaRe
New Today: 0
New Yesterday: 0
Overall: 9144
People Online:
Visitors: 72
Members: 0
Total: 72
|
|
|
|
|
|
Full disclosure |
|
|
|
|
|
|
|
|
|
IT Security and Insecurity Portal |
|
|
Remote program execution through lan |
|
Posted: Mon Jun 01, 2009 7:00 pm |
|
|
Panic_Mode |
Active user |
|
|
Joined: Feb 09, 2008 |
Posts: 39 |
|
|
|
|
|
|
|
Hello guys.
My question.
With just cmd (without any other program installed) can a program be executed remotely through lan to another windows machine? |
|
|
|
|
Posted: Tue Jun 02, 2009 9:33 am |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
I think that you still need some utility. Example:
http://technet.microsoft.com/en-us/sysinternals/bb897553.aspx
Test was successful (using Windows 2000 SP4):
Code: |
C:\Program Files (x86)\Sysinternals>psexec \\192.168.1.64 -u VM2000\Adm
inistrator -p 123 calc.exe
PsExec v1.94 - Execute processes remotely
Copyright (C) 2001-2008 Mark Russinovich
Sysinternals - www.sysinternals.com
calc.exe exited on 192.168.1.64 with error code 1.
|
|
|
|
|
|
Posted: Tue Jun 02, 2009 11:23 pm |
|
|
Panic_Mode |
Active user |
|
|
Joined: Feb 09, 2008 |
Posts: 39 |
|
|
|
|
|
|
|
thank you waraxe.
It is cool that you don't need to install anything on the other computer.
However I have a problem, on the 2nd pc on my lan I have no password (XP os) but I get an access denied message. Any thoughts? |
|
|
|
|
Posted: Wed Jun 03, 2009 7:40 am |
|
|
waraxe |
Site admin |
|
|
Joined: May 11, 2004 |
Posts: 2407 |
Location: Estonia, Tartu |
|
|
|
|
|
|
You need account with password. Accounts without password can't be used for remote registry editing, remote shutdown, etc. This is security feature and without it many computers in world would be hacked in short time. For example, it's known secret, that Windows XP out-of-the-box contains "hidden" administrator account and in most cases that account is without password. So it means, that most Win XP boxes would be in danger, if there was a way to remotely abuse them through RPC without password. |
|
|
|
|
Posted: Thu Jun 04, 2009 3:29 pm |
|
|
Panic_Mode |
Active user |
|
|
Joined: Feb 09, 2008 |
Posts: 39 |
|
|
|
|
|
|
|
Ah I see. Thanks for the information Waraxe. |
|
|
|
|
www.waraxe.us Forum Index -> General discussion
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum
|
All times are GMT
Page 1 of 1
|
|
|
Powered by phpBB © 2001-2008 phpBB Group
|
|
|
|
|
|
|