Microsoft has confirmed that a Zero day vulnerability in its internet explorer browser is being actively attacked in the wild.
Proof of concept for IE explorer zero day
The below screen shot shows that the attacker has loaded the exploit in Metasploit and has set all the options like SRVHOST , LOCALHOST, LPORT etc.
The following screen shot shows that the attacker hosted a the malicious page in the following URL http://192.168.2.3/is
Note: This URL http://192.168.2.3/is can be made as a Pishing URL and force victims to visit the same URL with IE browser
The following screenshot shows that the victim visits the same URL given by the attacker using IE browser.
The following Screen shot shows that the attacker successfully got the shell of the victim and checking the processes running in the victims system.
The following Screen shot shows the IP address of the victim which is 192.168.2.6 and the MAC address also
The following screenshot shows that the attacker has root access of the victim’s laptop and has migrated to the Google chrome process.
The following screen shot shows that the attacker has captured a screen grab of the victim.