vmware vncinject tips?

[paul at pauldotcom.com (Paul Asadoorian)]

If it were DEP, the exploit most likely would have failed as a result.
Sounds like VNC does not like the Vista system, have you tried
installing a version of TightVNC on the Vista system just to see if VNC
would work at all?

Also, sometimes the virtualized hardware and Metasploit don't get along.
 For example, the payloads for disabling the keyboard and/or mouse don't
work in a VM.

If all else fails, try posting to the Metasploit list, HD is really good
about responding to questions on that list.

Cheers,
Paul

Tim Mugherini wrote:
> DEP? Shot in the dark
>
> On 3/23/09, Michel Lundell <michel at moose.se> wrote:
> > When starting a vncserver within the Vista and connect from the
> > backtrack host, it works fine .. To me it looks like the vncdll that
> > fails ...
> >
> > ???
> >
> > /Michel
> >
> > > Hi, nope, I disabled Aero by selecting another color schema, I choosed
> > > Windows Classic, as in the article
> > > http://www.vistaclues.com/turn-off-the-fancy-windows-vista-aero-interface/
> > >
> > > but no, still a white vncviwer, no graphics ...
> > >
> > > any more ideas?
> > >
> > > /Michel
> > >
> > >
> > >
> > > > Michel
> > > >
> > > > I've seen this before with Aero enabled on Vista- VNC cannot pass the
> > > > graphics. Turning off Aero would be the quickly determine if this is it
> > > > or
> > > > not. There are come config chsanges/hacks out there addressing it.
> > > >
> > > > I have also seen it in windows when another remote control client is
> > > > alreayd
> > > > connected (but that does not sound like this is the case here)
> > > >
> > > > On Mon, Mar 23, 2009 at 6:24 AM, Michel <michel at moose.se> wrote:
> > > >
> > > > > Hi, has anyone got metasploit vncinject working within vmware?
> > > > >
> > > > > Im setting up a user awareness demo
> > > > > and thought it would be a nice visual
> > > > > effect if the attacker got a vnc connection upon successful exploit..
> > > > >
> > > > > setup is
> > > > > one vm with backtrack3
> > > > > one vm with Vista
> > > > > and one vm with ubuntu server handling
> > > > > smtp, imap,pop3,www ...
> > > > >
> > > > > when vista is pwned the vncviewer window is blank, I Can Control the
> > > > > mouse and keyboard but cant view
> > > > > the desktop... Been fiddeling with this
> > > > > for too many hours now..
> > > > >
> > > > > Can it be done?
> > > > >
> > > > > /regards michel
> > > > >
> > > > >
> > > > > /Michel
> > > > > _______________________________________________
> > > > > Pauldotcom mailing list
> > > > > Pauldotcom at mail.pauldotcom.com
> > > > > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > > > > Main Web Site: http://pauldotcom.com
> > > > _______________________________________________
> > > > Pauldotcom mailing list
> > > > Pauldotcom at mail.pauldotcom.com
> > > > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > > > Main Web Site: http://pauldotcom.com
> > >
> > > _______________________________________________
> > > Pauldotcom mailing list
> > > Pauldotcom at mail.pauldotcom.com
> > > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > > Main Web Site: http://pauldotcom.com
> >
> > _______________________________________________
> > Pauldotcom mailing list
> > Pauldotcom at mail.pauldotcom.com
> > http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
> > Main Web Site: http://pauldotcom.com

-- 
Paul Asadoorian
PaulDotCom Enterprises
Web: http://pauldotcom.com
Phone: 401.829.9552