Fix AMT scanner for mangled HTML (no </p>)
Also stores proof using the correct :info for report_vuln (not :proof).bug/bundler_fix
parent
c1372456e2
commit
549f9e74d8
|
@ -76,7 +76,7 @@ class MetasploitModule < Msf::Auxiliary
|
|||
proof = res.body.to_s
|
||||
proof_hash = nil
|
||||
|
||||
info_keys = res.body.scan(/<td class=r1><p>([^\<]+)<\/p>/).map{|x| x.first.to_s.gsub("/", "/") }
|
||||
info_keys = res.body.scan(/<td class=r1><p>([^\<]+)(?:<\/p>)?/).map{|x| x.first.to_s.gsub("/", "/") }
|
||||
if info_keys.length > 0
|
||||
proof_hash = {}
|
||||
proof = ""
|
||||
|
@ -106,7 +106,7 @@ class MetasploitModule < Msf::Auxiliary
|
|||
:proto => 'tcp',
|
||||
:name => "Intel AMT Digest Authentication Bypass",
|
||||
:refs => self.references,
|
||||
:proof => proof
|
||||
:info => proof
|
||||
})
|
||||
|
||||
rescue ::Timeout::Error, ::Errno::EPIPE
|
||||
|
|
Loading…
Reference in New Issue