26Şub
MS08-067.c fails at WNetAddConnection2()
I'm working with some exploit code for the MS08-067 vulnerability from ExploitDB.
The section:
WNetAddConnection2(&nr, "", "", 0)
* fails with an error of 67 (ERROR_BAD_NET_NAME
), but I don't know why.
I'm using the correct IP as the argument for the program, against an XP SP2 VM which is vulnerable to MS08-067 (I've exploited it with Metasploit).
Has anyone used this code before and come across this? Any help would be appreciated.
*Extended Code:
server = argv[1];
_snprintf_s(unc, sizeof(unc), "\\\\%s\\pipe", server);
unc[sizeof(unc) -1] = 0;
nr.dwType = RESOURCETYPE_ANY;
nr.lpLocalName = NULL;
nr.lpRemoteName = unc;
nr.lpProvider = NULL;
printf("connect %s ipc$ .... ", server);
DWORD error;
if ((error = WNetAddConnection2(&nr, "", "", 0)) != 0)
{
printf( "failed\n" );
return 0;
}