Release fixups, word choice, refs, etc.

2014-06-23 11:17:00 -05:00 · 2014-06-23 11:17:00 -05:00 · 0219c4974a
parent 05d4a1ab2c
commit 0219c4974a
5 changed files with 13 additions and 12 deletions
--- a/modules/auxiliary/admin/chromecast/chromecast_reset.rb
+++ b/modules/auxiliary/admin/chromecast/chromecast_reset.rb
@ -11,13 +11,14 @@ class Metasploit4 < Msf::Auxiliary

  def initialize(info = {})
    super(update_info(info,
-      'Name' => 'Chromecast Factory Reset',
+      'Name' => 'Chromecast Factory Reset DoS',
      'Description' => %q{
-        This module performs a factory reset on a Chromecast.
+        This module performs a factory reset on a Chromecast, causing a denial of service (DoS).
+        No user authentication is required.
      },
      'Author' => ['wvu'],
      'References' => [
-        ['URL', 'https://en.wikipedia.org/wiki/Chromecast']
+        ['URL', 'http://www.google.com/intl/en/chrome/devices/chromecast/index.html'] # vendor website
      ],
      'License' => MSF_LICENSE
    ))
--- a/modules/auxiliary/admin/chromecast/chromecast_youtube.rb
+++ b/modules/auxiliary/admin/chromecast/chromecast_youtube.rb
@ -17,7 +17,7 @@ class Metasploit4 < Msf::Auxiliary
      },
      'Author' => ['wvu'],
      'References' => [
-        ['URL', 'https://en.wikipedia.org/wiki/Chromecast']
+        ['URL', 'http://www.google.com/intl/en/chrome/devices/chromecast/index.html'] # vendor website
      ],
      'License' => MSF_LICENSE,
      'Actions' => [
--- a/modules/auxiliary/gather/chromecast_wifi.rb
+++ b/modules/auxiliary/gather/chromecast_wifi.rb
@ -17,7 +17,7 @@ class Metasploit4 < Msf::Auxiliary
      },
      'Author' => ['wvu'],
      'References' => [
-        ['URL', 'https://en.wikipedia.org/wiki/Chromecast']
+        ['URL', 'http://www.google.com/intl/en/chrome/devices/chromecast/index.html'] # vendor website
      ],
      'License' => MSF_LICENSE
    ))
--- a/modules/exploits/linux/http/dlink_authentication_cgi_bof.rb
+++ b/modules/exploits/linux/http/dlink_authentication_cgi_bof.rb
@ -15,17 +15,17 @@ class Metasploit3 < Msf::Exploit::Remote
    super(update_info(info,
      'Name'           => 'D-Link authentication.cgi Buffer Overflow',
      'Description'    => %q{
-        This module exploits an remote buffer overflow vulnerability on different D-Link routers.
+        This module exploits an remote buffer overflow vulnerability on several D-Link routers.
        The vulnerability exists in the handling of HTTP queries to the authentication.cgi with
        long password values. The vulnerability can be exploitable without authentication. This
        module has been tested successfully on D-Link firmware DIR645A1_FW103B11. Other firmwares
-        like the DIR865LA1_FW101b06 and DIR845LA1_FW100b20 are also vulnerable.
+        such as the DIR865LA1_FW101b06 and DIR845LA1_FW100b20 are also vulnerable.
      },
      'Author'         =>
        [
          'Roberto Paleari', # Vulnerability discovery
          'Craig Heffner',   # also discovered the vulnerability / help with some parts of this module
-          'Michael Messner <devnull[at]s3cur1ty.de>', # Metasploit module and verification on different other routers
+          'Michael Messner <devnull[at]s3cur1ty.de>', # Metasploit module and verification on several other routers
        ],
      'License'        => MSF_LICENSE,
      'Platform'       => ['linux'],
@ -73,7 +73,7 @@ class Metasploit3 < Msf::Exploit::Remote
  end

  def exploit
-    print_status("#{peer} - Trying to access the vulnerable URL...")
+    print_status("#{peer} - Accessing the vulnerable URL...")

    unless check == Exploit::CheckCode::Detected
      fail_with(Failure::Unknown, "#{peer} - Failed to access the vulnerable URL")
--- a/modules/exploits/linux/http/dlink_hedwig_cgi_bof.rb
+++ b/modules/exploits/linux/http/dlink_hedwig_cgi_bof.rb
@ -15,7 +15,7 @@ class Metasploit3 < Msf::Exploit::Remote
    super(update_info(info,
      'Name'           => 'D-Link hedwig.cgi Buffer Overflow in Cookie Header',
      'Description'    => %q{
-        This module exploits an anonymous remote code execution vulnerability on different D-Link
+        This module exploits an anonymous remote code execution vulnerability on several D-Link
        routers. The vulnerability exists in the handling of HTTP queries to the hedwig.cgi with
        long value cookies. This module has been tested successfully on D-Link DIR300v2.14, DIR600
        and the DIR645A1_FW103B11 firmware.
@ -24,7 +24,7 @@ class Metasploit3 < Msf::Exploit::Remote
        [
          'Roberto Paleari', # Vulnerability discovery
          'Craig Heffner',   # also discovered the vulnerability / help with some parts of this exploit
-          'Michael Messner <devnull[at]s3cur1ty.de>', # Metasploit module and verification on different other routers
+          'Michael Messner <devnull[at]s3cur1ty.de>', # Metasploit module and verification on several other routers
        ],
      'License'        => MSF_LICENSE,
      'References'     =>
@ -72,7 +72,7 @@ class Metasploit3 < Msf::Exploit::Remote
  end

  def exploit
-    print_status("#{peer} - Trying to access the vulnerable URL...")
+    print_status("#{peer} - Accessing the vulnerable URL...")

    unless check == Exploit::CheckCode::Detected
      fail_with(Failure::Unknown, "#{peer} - Failed to access the vulnerable URL")