2007-02-18 00:10:39 +00:00
|
|
|
##
|
2010-03-24 00:11:21 +00:00
|
|
|
# This file is part of the Metasploit Framework and may be subject to
|
2007-02-18 00:10:39 +00:00
|
|
|
# redistribution and commercial restrictions. Please see the Metasploit
|
2012-02-21 01:40:50 +00:00
|
|
|
# web site for more information on licensing and terms of use.
|
|
|
|
# http://metasploit.com/
|
2007-02-18 00:10:39 +00:00
|
|
|
##
|
|
|
|
|
2006-09-14 06:09:46 +00:00
|
|
|
require 'msf/core'
|
|
|
|
|
2008-10-02 05:23:59 +00:00
|
|
|
class Metasploit3 < Msf::Exploit::Remote
|
2009-12-06 05:50:37 +00:00
|
|
|
Rank = ManualRanking
|
2006-09-14 06:09:46 +00:00
|
|
|
|
|
|
|
#
|
|
|
|
# This module does basically nothing
|
2011-11-28 23:52:34 +00:00
|
|
|
# NOTE: Because of this it's missing a disclosure date that makes msftidy angry.
|
2006-09-14 06:09:46 +00:00
|
|
|
#
|
|
|
|
|
|
|
|
def initialize(info = {})
|
|
|
|
super(update_info(info,
|
|
|
|
'Name' => 'Generic Payload Handler',
|
|
|
|
'Description' => %q{
|
|
|
|
This module is a stub that provides all of the
|
|
|
|
features of the Metasploit payload system to exploits
|
|
|
|
that have been launched outside of the framework.
|
|
|
|
},
|
|
|
|
'License' => MSF_LICENSE,
|
|
|
|
'Author' => ['hdm'],
|
|
|
|
'References' => [ ],
|
|
|
|
'Payload' =>
|
|
|
|
{
|
2011-01-04 23:37:11 +00:00
|
|
|
'Space' => 10000000,
|
2007-02-15 22:17:50 +00:00
|
|
|
'BadChars' => '',
|
|
|
|
'DisableNops' => true,
|
2006-09-14 06:09:46 +00:00
|
|
|
},
|
2010-08-16 16:34:55 +00:00
|
|
|
'Platform' => [ 'win', 'linux', 'solaris', 'unix', 'osx', 'bsd', 'php', 'java' ],
|
2009-01-22 05:35:19 +00:00
|
|
|
'Arch' => ARCH_ALL,
|
2006-09-14 06:09:46 +00:00
|
|
|
'Targets' => [ [ 'Wildcard Target', { } ] ],
|
|
|
|
'DefaultTarget' => 0
|
|
|
|
))
|
2007-02-27 18:57:47 +00:00
|
|
|
|
|
|
|
register_advanced_options(
|
|
|
|
[
|
2011-02-28 03:22:40 +00:00
|
|
|
OptBool.new("ExitOnSession", [ false, "Return from the exploit after a session has been created", true ]),
|
|
|
|
OptInt.new("ListenerTimeout", [ false, "The maximum number of seconds to wait for new sessions", 0])
|
2007-02-27 18:57:47 +00:00
|
|
|
], self.class)
|
2006-09-14 06:09:46 +00:00
|
|
|
end
|
|
|
|
|
|
|
|
def exploit
|
2010-06-15 17:25:14 +00:00
|
|
|
if not datastore['ExitOnSession'] and not job_id
|
2012-06-19 17:59:15 +00:00
|
|
|
fail_with(Exploit::Failure::Unknown, "Setting ExitOnSession to false requires running as a job (exploit -j)")
|
2010-06-15 17:25:14 +00:00
|
|
|
end
|
|
|
|
|
2011-02-28 03:22:40 +00:00
|
|
|
stime = Time.now.to_f
|
2006-09-14 06:09:46 +00:00
|
|
|
print_status "Starting the payload handler..."
|
|
|
|
while(true)
|
2007-02-27 18:57:47 +00:00
|
|
|
break if session_created? and datastore['ExitOnSession']
|
2011-02-28 03:22:40 +00:00
|
|
|
break if ( datastore['ListenerTimeout'].to_i > 0 and (stime + datastore['ListenerTimeout'].to_i < Time.now.to_f) )
|
2007-02-27 18:57:47 +00:00
|
|
|
|
2010-06-22 19:11:05 +00:00
|
|
|
select(nil,nil,nil,1)
|
2006-09-14 06:09:46 +00:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
|
2008-11-03 21:08:46 +00:00
|
|
|
end
|