infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Warn about the potential to jack up /etc/passwd 

This needs to be underlined. It's too easy to wang up /etc/passwd by
accident.

This closes PR #632
[Fixes #38593685]
unstable
Tod Beardsley 2012-10-29 11:22:06 -05:00
parent 5e80e19a4e
commit 65e27ff38a
1 changed files with 3 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
modules/post/multi/escalate/metasploit_pcaplog.rb
View File

@ -33,7 +33,9 @@ class Metasploit3 < Msf::Post
Successful exploitation results in the creation of a new superuser account.
This module requires manual clean-up - remove /tmp/msf3-session*pcap files and truncate /etc/passwd.
This module requires manual clean-up. Upon success, you should remove /tmp/msf3-session*pcap
files and truncate /etc/passwd. Note that if this module fails, you can potentially induce
a permanent DoS on the target by corrupting the /etc/passwd file.
},
'License' => MSF_LICENSE,
'Author' => [ '0a29406d9794e4f9b30b3c5d6702c708'],