infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Land #10084, Mark all versions of telpho10 as vulnerable

GSoC/Meterpreter_Web_Console
Brent Cook 2018-05-23 11:41:26 -05:00
parent 70236c6424 567e2dbc7e
commit 5b3cca3082
No known key found for this signature in database
GPG Key ID: 1FFAA0B24B708F96
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
modules/auxiliary/admin/http/telpho10_credential_dump.rb
View File

@ -11,11 +11,11 @@ class MetasploitModule < Msf::Auxiliary
super(update_info(info,
'Name' => 'Telpho10 Backup Credentials Dumper',
'Description' => %q{
This module exploits a vulnerability found in Telpho10 telephone system
This module exploits a vulnerability present in all versions of Telpho10 telephone system
appliance. This module generates a configuration backup of Telpho10,
downloads the file and dumps the credentials for admin login,
phpmyadmin, phpldapadmin, etc.
This module has been successfully tested on the appliance.
This module has been successfully tested on the appliance versions 2.6.31 and 2.6.39.
},
'Author' => 'Jan Rude', # Vulnerability Discovery and Metasploit Module
'License' => MSF_LICENSE,
@ -23,7 +23,7 @@ class MetasploitModule < Msf::Auxiliary
'Platform' => 'linux',
'Targets' =>
[
['Telpho10 <= 2.6.31', {}]
['Telpho10', {}]
],
'Privileged' => false,
'DisclosureDate' => 'Sep 2 2016'))