Lame
介绍了Hack The Box中的Lame机器渗透测试过程,利用SMB漏洞CVE-2007-2447通过Metasploit获取root权限,并升级为Meterpreter会话以进一步控制。 2025-10-9 08:57:17 Author: infosecwriteups.com(查看原文) 阅读量:27 收藏

Hack The Box: Machine

Andrew Paul

© Hack The Box

Lame

Release date: March 15th, 2017
OS: Linux
Categories: Vulnerability Assessment, Enterprise Network
Difficulty: Easy
Created by: ch4p
Link: https://app.hackthebox.com/machines/Lame
Soundtrack: Cruel Times — Superheaven

Summary

In this walkthrough, we explore the Lame machine, focusing on an SMB vulnerability that allows arbitrary command execution. After identifying the vulnerability (CVE-2007–2447) in the Samba service, we use a Metasploit module to exploit it. This grants us root access via a reverse TCP shell, and we enhance our control by upgrading to a Meterpreter session, enabling further enumeration and exploitation without needing privilege escalation.

Enumeration

Nmap scan

nmap -Pn -sV -sC -O -T4 -p- -oA lame 10.10.10.3

Output

Starting Nmap 7.95 ( https://nmap.org ) at 2025-02-23 15:54 AST
Nmap scan report for 10.10.10.3
Host is up (0.048s latency).
Not shown: 65530 filtered tcp ports (no-response)
PORT     STATE SERVICE     VERSION
21/tcp   open  ftp         vsftpd 2.3.4
| ftp-syst: 
|…

文章来源: https://infosecwriteups.com/lame-b814236efc97?source=rss----7b722bfd1b8d---4
如有侵权请联系:admin#unsafe.sh