infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge remote branch 'jlee-r7/bug/rm7350-broken-http-tunneling' 

Tested and works, screens in Pull #990.

[Fixes #990]
[FixRM #7350]
unstable
Tod Beardsley 2012-10-30 10:56:45 -05:00
parent 26808093d8 d0650dfb25
commit 432b317edc
3 changed files with 13 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
lib/msf/core/handler/bind_tcp.rb
View File

@ -127,7 +127,7 @@ module BindTcp
rescue Rex::ConnectionRefused rescue Rex::ConnectionRefused
# Connection refused is a-okay # Connection refused is a-okay
rescue ::Exception rescue ::Exception
wlog("Exception caught in bind handler: #{$!}") wlog("Exception caught in bind handler: #{$!.class} #{$!}")
end end
break if client break if client
@ -138,7 +138,6 @@ module BindTcp
# Valid client connection? # Valid client connection?
if (client) if (client)
# Increment the has connection counter # Increment the has connection counter
self.pending_connections += 1 self.pending_connections += 1

3
lib/rex/io/stream_abstraction.rb
View File

@ -149,6 +149,9 @@ protected
closed = true closed = true
wlog("monitor_rsock: closed remote socket due to nil read") wlog("monitor_rsock: closed remote socket due to nil read")
end end
rescue EOFError => e
closed = true
dlog("monitor_rsock: EOF in rsock")
rescue ::Exception => e rescue ::Exception => e
closed = true closed = true
wlog("monitor_rsock: exception during read: #{e.class} #{e}") wlog("monitor_rsock: exception during read: #{e.class} #{e}")

11
lib/rex/post/meterpreter/client.rb
View File

@ -154,7 +154,7 @@ class Client
ssl = OpenSSL::SSL::SSLSocket.new(sock, ctx) ssl = OpenSSL::SSL::SSLSocket.new(sock, ctx)
# Use non-blocking OpenSSL operations on Windows # Use non-blocking OpenSSL operations on Windows
if not ( ssl.respond_to?(:accept_nonblock) and Rex::Compat.is_windows ) if !( ssl.respond_to?(:accept_nonblock) and Rex::Compat.is_windows )
ssl.accept ssl.accept
else else
begin begin
@ -211,12 +211,19 @@ class Client
cert.version = 2 cert.version = 2
cert.serial = rand(0xFFFFFFFF) cert.serial = rand(0xFFFFFFFF)
# Depending on how the socket was created, getsockname will
# return either a struct sockaddr as a String (the default ruby
# Socket behavior) or an Array (the extend'd Rex::Socket::Tcp
# behavior). Avoid the ambiguity by always picking a random
# hostname. See #7350.
subject_cn = Rex::Text.rand_hostname
subject = OpenSSL::X509::Name.new([ subject = OpenSSL::X509::Name.new([
["C","US"], ["C","US"],
['ST', Rex::Text.rand_state()], ['ST', Rex::Text.rand_state()],
["L", Rex::Text.rand_text_alpha(rand(20) + 10)], ["L", Rex::Text.rand_text_alpha(rand(20) + 10)],
["O", Rex::Text.rand_text_alpha(rand(20) + 10)], ["O", Rex::Text.rand_text_alpha(rand(20) + 10)],
["CN", self.sock.getsockname[1] || Rex::Text.rand_hostname], ["CN", subject_cn],
]) ])
issuer = OpenSSL::X509::Name.new([ issuer = OpenSSL::X509::Name.new([
["C","US"], ["C","US"],