infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Fix scrutinizer checks

unstable
sinn3r 2013-01-31 14:48:54 -06:00
parent 5332e80ae9
commit 1a01d6d033
2 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
modules/exploits/windows/http/sonicwall_scrutinizer_sqli.rb
View File

@ -62,7 +62,7 @@ class Metasploit3 < Msf::Exploit::Remote
def check
res = send_request_raw({'uri'=>normalize_uri(target_uri.path)})
res = send_request_raw({'uri'=>'/'}) # Check the base path for version regex
if res and res.body =~ /\<title\>Scrutinizer\<\/title\>/ and
res.body =~ /\<div id\=\'.+\'\>Scrutinizer 9\.[0-5]\.[0-1]\<\/div\>/
return Exploit::CheckCode::Vulnerable

4
modules/exploits/windows/mysql/scrutinizer_upload_exec.rb
View File

@ -72,10 +72,8 @@ class Metasploit3 < Msf::Exploit::Remote
def check
tmp_rport = datastore['RPORT']
uri = normalize_uri(target_uri.path)
uri << '/' if uri[-1,1] != '/'
datastore['RPORT'] = datastore['HTTPPORT']
res = send_request_raw({'uri'=>uri})
res = send_request_raw({'uri'=>'/'}) #Check the base path for regex
datastore['RPORT'] = tmp_rport
if res and res.body =~ /\<title\>Scrutinizer\<\/title\>/ and
res.body =~ /\<div id\=\'.+\'\>Scrutinizer 9\.[0-5]\.[0-2]\<\/div\>/