From 0634cb98923316df13f33a16affbc3908ea58b62 Mon Sep 17 00:00:00 2001
From: sinn3r <msfsinn3r@gmail.com>
Date: Fri, 22 Mar 2013 13:18:32 -0500
Subject: [PATCH] Need to avoid badchar 0x00

0x00 becomes double null, which functions like a terminator
---
 lib/msf/core/exploit/http/server.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/msf/core/exploit/http/server.rb b/lib/msf/core/exploit/http/server.rb
index fca138e310..16a7b4e89a 100644
--- a/lib/msf/core/exploit/http/server.rb
+++ b/lib/msf/core/exploit/http/server.rb
@@ -798,7 +798,7 @@ protected
 	# publication on "DEPS – Precise Heap Spray on Firefox and IE10".
 	#
 	# The "sprayHeap" JavaScript function supports the following arguments:
-	#   shellcode     => The shellcode to spray in JavaScript.
+	#   shellcode     => The shellcode to spray in JavaScript.  Note: Avoid null bytes.
 	#   objId         => Optional. The ID for a <div> HTML tag.
 	#   offset        => Optional. Number of bytes to align the shellcode, default: 0x104
 	#   heapBlockSize => Optional. Allocation size, default: 0x80000