CVE-1999-0504

This Metasploit module exploits CVE-1999-0504 by leveraging SMB authentication to upload and execute a payload as a service on Windows systems, similar to SysInternals' PsExec. It requires valid administrator credentials and creates a temporary service to achieve remote code execution.

This Metasploit module enumerates logged-in users on a Windows system by querying the HKU registry key via SMB, using valid administrator credentials. It leverages psexec-like functionality to execute commands remotely and parse registry output.

This Metasploit module exploits valid administrator credentials to execute arbitrary payloads on Windows systems via SMB, similar to SysInternals' PsExec. It supports multiple execution methods including PowerShell, native upload, MOF upload, and command execution.

This Metasploit module exploits PowerShell Remoting (WinRM) to execute arbitrary commands on target machines via TCP 47001. It supports both IP ranges and host files for targeting, and can authenticate using provided credentials.

This Metasploit module exploits CVE-1999-0504 by uploading an executable to a victim system, creating a share, and starting a remote service via a UNC path to achieve remote code execution using the current user's token. It supports both SMB and PowerShell techniques for payload delivery.

This Metasploit module exploits CVE-1999-0504 by leveraging WMI (Windows Management Instrumentation) to execute PowerShell payloads remotely via WMIC commands, using the current user's authentication token. It supports both direct execution and chunked payload delivery via environment variables for systems without ExtAPI support.