since xp is longer being patched by microsoft this should mean its very vulnerable now to remote exploits correct? are there any "zero-day" exploits that work on xp that should be forever available. it seems to me that xp being left in the cold my M$ and that XP still has a pretty large foothold this would be something great if your a hacker. But everything i find just points to netapi or dcom exploits which have been patched therefor any system that has all m$ patches is not vulnerable anymore. Especially if the system has most ports closed. exacmle xp machine with ports 135,139,445 open but all remote exploits are patched some time ago so any system that took updates in the past year are secured. Surely there has to be some remote exploit that will forever pwn an xp box right, or only those elite hackers that found the hole themselves and dont release
Forum Thread: Xp No Longer Patched, Open Exploits?
- Hot
- Results
-
How To: Make a yummy no bake dessert pizza with cream cheese and fruit
-
How To: Make amazing chicken fajitas & a lemon sugar dessert
-
How To: Make a sweet puffy glazed fig tree dessert
-
How To: Make a chocolate self-saucing pudding dessert
-
How To: Mix a Vanilla Frappuccino Martini cocktail
-
How To: Cook breakfast and dessert crepes
-
How To: Bake Portuguese custard tarts
-
How To: Bake a wheat free Norwegian chocolate cake
-
How To: Make vegan chocolate and orange truffles
-
How To: Make coconut banana pudding dessert (chet ktiss)
-
How To: Make bread pudding dessert
-
How To: Make a frozen lemon soufflé, the perfect summer treat
-
How To: Make a Korean summer dessert
-
How To: Bake Turkey Cupcakes for Thanksgiving Dessert
-
How To: Make orange chocolate cake for Ramadan
-
How To: Make raspberry chocolate cupcakes
-
How To: Remove Cantaloupe Skin and Slice the Cantaloupe into Pieces
-
How To: Make Shrikhand or saffron mango mousse for dessert
-
How To: Make refreshing Coke & other soda floats with Betty
-
How To: Make French Mille Feuille (Napoleon) for Valentine's Day
-
How To: Follow the 2024 Election Results in Real Time with Apple News' Live Activity for iPhone, iPad, and Apple Watch
-
How To: See Passwords for Wi-Fi Networks You've Connected Your Android Device To
-
How To: Generate Text, Images, and Insights with Apple Intelligence's Built-in ChatGPT Integration
-
How To: Create an Admin User Account Using CMD Prompt (Windows)
-
How To: Easily Record Phone Calls on Your iPhone and Get Auto-Generated Transcripts and Summaries
-
How To: Clone Any Android App on Your Samsung Galaxy Phone Without Using Any Third-Party Tools
-
How To: Clear Your Frequently Used and Recent Emoji from Your iPhone's Keyboard
-
How To: Scan for Vulnerabilities on Any Website Using Nikto
-
How To: Play The Card Game "Judgment"
-
How To: Master SCRABBLE & Win Every Game
-
How To: Trick Websites into Thinking You're on a Different OS or Browser
-
How To: Make Your Xbox 360 Games Region Free
-
How To: Use FaceTime's Secret Hand Gestures and Reaction Buttons to Add Animated On-Screen Effects to Your Video Feed
-
How To: CC in a Physical Business Letter
-
How To: 13 Tips Every Apple Pencil User Needs to Know for iPad
-
How To: Make Spoofed Calls Using Any Phone Number You Want Right from Your Smartphone
-
How To: Make the USB Connection on Your Android Phone Default to File Transfer Mode
-
How To: Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To: Control Your Buying Impulses by Window Shopping
-
Hack Like a Pro: Networking Basics for the Aspiring Hacker, Part 2 (TCP/IP)
6 Responses
The OS itself is hardly ever exploited. But a lot of social engineering and msfvenom stuff works great with XP
Frank:
A new RPC, remote code execution exploit was found in the wild just over a month ago that is not patched. The trojan is known as 'Trojan.Gimmiv.A'.
OTW
I have not heard about that one yet. I checked the exploit-db and found nothing.
Apparently, its a repackaged old RPC exploit.
I will look into this. I was kinda wondering the same because a lot of devices still run XP and that is scary.
A lot of devices do run xp still, including embedded devices that you cant really social engineer. Thats what grabbed my interest more and the reason i asked about remote code execution. Seeing as microsoft ended support i figured someone would figure out some remote exploit that in theory would work "forever" now.
You mentioned msfvenom but isnt that really just encoding the payloads to slip past av and firewalls, how would that help against an embedded machine or regular xp box on a lan that you cant social engineer.
Share Your Thoughts