Metasploit mailing list archives
BackTrack 4 and MS09-xxx not found
From: metafan at intern0t.net (metafan at intern0t.net)
Date: Mon, 21 Sep 2009 02:49:34 -0400
Hi again, It's pretty simple, you buy Core Impact (newest version) and most of these exploits should be there. Or you can get Immunity Canvas too and perhaps another commercial feed where they provide a lot of exploits, I can't remember the name of it right now though.. What I'm trying to say is: Metasploit is F R E E and that is why you cannot expect every single exploit to be in there. Of course you can go to Milw0rm and check out the exploits and perhaps port (as in import) the exploits to Metasploit yourself and perhaps create a few modules too that you could share with the community as well. (unpublic exploits..) That's how it works with Metasploit! :-) I don't expect everything to work 100% in Linux either with some specific hardware units or if I have to emulate something due to closed source. Of course if I wrote everything myself for whatever problem I had, I would have no problems but I'm not that a good programmer, in fact I am horrible!!!11(eleventyone!!? =P) Best regards, MaXe ?HI again, To touch with you, i installed Windows 2003 SP2(English), and scanned it "WinVlunerScanner" this listed a lot ofvulnerabilities none of them is listed in BT 4. how do i exploit these. even i have updated BT4 (metasploit using svn). :( MS09-038??? Vulnerabilities in Windows Media File processing (Allow Remote Code execution) MS09-037??? Vulnerabilities in Microsoft Template Library (Allow Remote Code execution) MS09-032??? Cumulative Security Update of ActiveX kill Bits MS09-029??? Vulnerabilities in the Embedded Open Type Font Engine (Allow Remote Code execution) MS09-028??? Vulnerabilities in Microsoft Directshow could allow remote code exectuion MS09-010??? Vulnerabilities in WordPad and Office Text Converter Could Allow Remote code execution MS09-011??? Vulnerabilities in DirectShow MS09-014??? cumulative Secuirty Update MS09-006??? Vulnerabiliy in Windows Kernel Could Allow remote doe execution MS09-001??? Vulnerability in SMB could allow remote code execution MS09-071??? vulnerability in GDI Could allow remote code execution MS09-073??? Cumulative Security update for IE thanks for Experts. -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mail.metasploit.com/pipermail/framework/attachments/20090921/554f8dac/attachment.html>
Current thread:
- BackTrack 4 and MS09-xxx not found Ammad Shah (Sep 20)
- <Possible follow-ups>
- BackTrack 4 and MS09-xxx not found metafan at intern0t.net (Sep 20)
- BackTrack 4 and MS09-xxx not found Ammad Shah (Sep 21)
- BackTrack 4 and MS09-xxx not found Ulisses Castro (Sep 21)
- BackTrack 4 and MS09-xxx not found Ammad Shah (Sep 21)