- rlogin -l msfadmin was able to remotely login because the “r” services have been misconfigured.
- Metasploit was used to exploit a vulnerability in the UnrealRCD daemon giving us a root shell on the remote
system.
- Ingreslock is open, which has an inherent vulnerability giving root access to a user who telnets.
- We were able to use MSF to exploit the distccd service, giving us remote shell root access.
- We were able to use MSF to exploit a samba vulnerability that allowed us to browse to remote file system and
retrieve the password file.