JuicyPotato @ Shield "COM -> recv failed with error: 10038"


I get “COM → recv failed with error: 10038” when using JuicyPotato on the Shield machine in the HTB Starting Point, and I don’t know why. Looking at the JuicyPotato.cpp source code, it’s in startCOMListener.

I got the WordPress admin password, modified a PHP file to upload Netcat and JuicyPotato. With Netcat I had a revershe shell. I am in the DOS shell as user “nt authority\iusr”.

I tried this command with all kinds of variations:
JuicyPotato.exe -l 1337 -p C:\WINDOWS\system32\cmd.exe -t *

I tried with the shell.bat to PowerShell with another Netcat listening. I tried the nine BITS CLSID for Windows Server 2016 Standard. I tried different port numbers. I tried renaming JuicyPotato.exe to js.exe for Windows Defender.

Do you know why “recv failed” ???

Here is a screenshot: https://ibb.co/0CYGRny

Thanks !!!

UPDATE - The command above does work now, it turns out I had the wrong CLSID. Furthermore, with the shell.bat, I am now NT AUTHORITY\SYSTEM, and I finally got the flag.

I am checking all values from Windows Server 2016 Standard | juicy-potato with no success. :frowning:

Any suggestions?


Reattempting today first time worked. Now it does not work anymore. I think it is related to a restore of the VM (not sure).

I am not receiving the error:
COM → recv failed with error: 10038

And it is “Testing {xyz-} port”
while the other netcat is open but I see nothing.

Please, help.

Got it!

Just a little piece of advice: juicy-potato/CLSID at master · ohpe/juicy-potato · GitHub

Question: do we need to “brute-force” the solution?

