infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update description to prefer the exploit module

bug/bundler_fix
William Vu 2014-09-30 11:34:28 -05:00
parent 162e42080a
commit 5ea968f3ee
No known key found for this signature in database
GPG Key ID: E761DCB4C1629024
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
modules/auxiliary/scanner/http/apache_mod_cgi_bash_env.rb
View File

@ -22,6 +22,10 @@ class Metasploit4 < Msf::Auxiliary
PROTIP: Use exploit/multi/handler with a PAYLOAD appropriate to your PROTIP: Use exploit/multi/handler with a PAYLOAD appropriate to your
CMD, set ExitOnSession false, run -j, and then run this module to create CMD, set ExitOnSession false, run -j, and then run this module to create
sessions on vulnerable hosts. sessions on vulnerable hosts.
Note that this is not the recommended method for obtaining shells.
If you require sessions, please use the apache_mod_cgi_bash_env_exec
exploit module instead.
}, },
'Author' => [ 'Author' => [
'Stephane Chazelas', # Vulnerability discovery 'Stephane Chazelas', # Vulnerability discovery