Legacy HackTheBox Easy Windows Machine Solved using Metasploit

March 10, 2023

Machine - Easy Windows - Legacy

IP 10.10.10.4

Contents

Tools
Enumeration
Exploitation

Tools

NMap
Metasploit

Enumeration

Atfirst asusual running nmap with command nmap -A 10.10.10.4 and it shows SMB is open. Server is running Windows.

Exploitation

After searching about SMB exploit got CVE-2008-4250. Then Searching more about CVE-2008-4250 shows a metasploit module exploit/windows/smb/ms08_067_netapi.
Using that exploit in metasploit gives the “Administrator” shell on the machine. Now, we can get user and root flag.

Author: Zishan Ahamed Thandar