🪟Algernon
192.168.105.65
Enumeration
Nmap scan
nmap 192.168.105.65 -p- -sV -T4 -A
Port 21
This machine does allow anonymous login for FTP.
Only folder that contained anything was Logs. Downloaded all files here.\
Port 80
Nothing here. Dirbuster finds nothing.
Port 139,445
SMB does not allow null login.
Port 5040
Found nothing on this port.
Port 7680
Found nothing on this port.
Port 9998
Found Smartermail installed at this port.
Did not find any version information about SmarterMail.
Dirbuster does find a lot of files.
Found https://www.exploit-db.com/exploits/49216 during research. Changed what I needed in the script and ran it.
Root
After running the exploit I landed on the machine at nt authority/system.
Last updated
Was this helpful?