https://chiefdennis.github.io/tags/cve-2009-3103/Recent content in CVE-2009-3103 on Chief Dennis' BlogHugoenMon, 09 Jun 2025 15:43:16 +0100https://chiefdennis.github.io/posts/offsec_internal/Mon, 09 Jun 2025 15:43:16 +0100https://chiefdennis.github.io/posts/offsec_internal/<p><img src="https://chiefdennis.github.io/posts/offsec_internal/image1.png#center" alt=""></p> <hr> <h2 id="introduction"> Introduction <a class="heading-link" href="#introduction"> <i class="fa-solid fa-link" aria-hidden="true" title="Link to heading"></i> <span class="sr-only">Link to heading</span> </a> </h2> <p>This post analyzes the process of privilege analysis, exploitation, and escalation in a vulnerable Windows environment. To do this, a network scan is carried out using Nmap, identifying open ports and services on the target system. Subsequently, using Metasploit, the presence of vulnerabilities in the SMB service is searched for and verified.</p> <p>In particular, the system is found to be vulnerable to CVE-2009-3103, a security flaw in SMB 2.0.2 that allows remote execution of code with elevated privileges. By exploiting this vulnerability, access is gained to the victim machine with NT AUTHORITY\SYSTEM privileges, granting full control over the system.</p>