since xp is longer being patched by microsoft this should mean its very vulnerable now to remote exploits correct? are there any "zero-day" exploits that work on xp that should be forever available. it seems to me that xp being left in the cold my M$ and that XP still has a pretty large foothold this would be something great if your a hacker. But everything i find just points to netapi or dcom exploits which have been patched therefor any system that has all m$ patches is not vulnerable anymore. Especially if the system has most ports closed. exacmle xp machine with ports 135,139,445 open but all remote exploits are patched some time ago so any system that took updates in the past year are secured. Surely there has to be some remote exploit that will forever pwn an xp box right, or only those elite hackers that found the hole themselves and dont release
Forum Thread: Xp No Longer Patched, Open Exploits?
- Hot
- Active
-
Forum Thread:
Keto Trim 800
0
Replies
5 hrs ago -
Forum Thread:
TV Episode Summaries for 27th January 2020 | femaji.com
0
Replies
6 hrs ago -
Forum Thread:
Alpha Titan Testo (2020 Where to Buy)
0
Replies
8 hrs ago -
Meterpreter:
Handler Failed to Bind
20
Replies
9 hrs ago -
Forum Thread:
Kali Wont Start, Stuck at Kali Login:
17
Replies
10 hrs ago -
Forum Thread:
How Can I Embed a Payload in a Working Pdf File ,So That, the One Who Opens It Wont Know Its a Malacious Pdf?
6
Replies
12 hrs ago -
Forum Thread:
SlimPhoria Keto - Warning revealed!! Read full!!
0
Replies
15 hrs ago -
Forum Thread:
Keto Trim 800
0
Replies
18 hrs ago -
Jumanji:
The Next Level Box Office _ImDB
1
Replies
22 hrs ago -
Forum Thread:
Fungus Eliminator by Pure Health Research
0
Replies
1 day ago -
Forum Thread:
Dolittle Movie Leaks _IMDb
0
Replies
1 day ago -
Forum Thread:
1917 Tickets _iMDb
0
Replies
1 day ago -
Forum Thread:
Bad Boys for Life Trailer 2 _IMdB
0
Replies
1 day ago -
Forum Thread:
Bad Boys for Life Tickets _ImdB
0
Replies
1 day ago -
Forum Thread:
The Last Full Measure Review _IMdb
0
Replies
1 day ago -
Forum Thread:
The Gentlemen Spoilers Reddit _iMdb
0
Replies
1 day ago -
Forum Thread:
The Turning Quotes _IMDB
0
Replies
1 day ago -
Forum Thread:
Bad Boys for Life Pvr _IMDb
0
Replies
1 day ago -
Forum Thread:
1917 Quora _IMDb
0
Replies
1 day ago -
Forum Thread:
The Last Full Measure Poster _IMdb
0
Replies
1 day ago
-
How To:
Hack Wi-Fi Networks with Bettercap
-
BT Recon:
How to Snoop on Bluetooth Devices Using Kali Linux
-
How To:
Enumerate MySQL Databases with Metasploit
-
How To:
Break into Router Gateways with Patator
-
How To:
Buy the Best Wireless Network Adapter for Wi-Fi Hacking in 2019
-
How To:
Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
How To:
4 Ways to Crack a Facebook Password & How to Protect Yourself from Them
-
How to Hack Wi-Fi:
Cracking WPA2 Passwords Using the New PMKID Hashcat Attack
-
How To:
Top 10 Things to Do After Installing Kali Linux
-
How To:
Crack Wi-Fi Passwords with Your Android Phone and Get Free Internet!
-
Android for Hackers:
How to Turn an Android Phone into a Hacking Device Without Root
-
Hack Like a Pro:
How to Hack Facebook (Facebook Password Extractor)
-
How To:
Check if Your Wireless Network Adapter Supports Monitor Mode & Packet Injection
-
Video:
How to Crack Weak Wi-Fi Passwords in Seconds with Airgeddon on Parrot OS
-
How To:
Get Unlimited Free Trials Using a "Real" Fake Credit Card Number
-
How To:
Hack Coin-Operated Laudromat Machines for Free Wash & Dry Cycles
-
How To:
Find Identifying Information from a Phone Number Using OSINT Tools
-
How To:
Load Kali Linux on the Raspberry Pi 4 for the Ultimate Miniature Hacking Station
-
Hack Like a Pro:
How to Spy on Anyone, Part 1 (Hacking Computers)
-
How To:
Set Up a Headless Raspberry Pi Hacking Platform Running Kali Linux
6 Responses
The OS itself is hardly ever exploited. But a lot of social engineering and msfvenom stuff works great with XP
Frank:
A new RPC, remote code execution exploit was found in the wild just over a month ago that is not patched. The trojan is known as 'Trojan.Gimmiv.A'.
OTW
I have not heard about that one yet. I checked the exploit-db and found nothing.
Apparently, its a repackaged old RPC exploit.
I will look into this. I was kinda wondering the same because a lot of devices still run XP and that is scary.
A lot of devices do run xp still, including embedded devices that you cant really social engineer. Thats what grabbed my interest more and the reason i asked about remote code execution. Seeing as microsoft ended support i figured someone would figure out some remote exploit that in theory would work "forever" now.
You mentioned msfvenom but isnt that really just encoding the payloads to slip past av and firewalls, how would that help against an embedded machine or regular xp box on a lan that you cant social engineer.
Share Your Thoughts