Minor fixups for trace report_note patch

unstable
Tod Beardsley 2011-11-14 10:40:11 -06:00
parent d92378a013
commit 96d2209ca2
1 changed files with 11 additions and 11 deletions

View File

@ -17,7 +17,7 @@ class Metasploit3 < Msf::Auxiliary
def initialize def initialize
super( super(
'Name' => 'HTTP TRACE Detection', 'Name' => 'HTTP TRACE Detection',
'Version' => '$Revision$', 'Version' => '$Revision: $',
'Description' => 'Test if TRACE is actually enabled. 405 (Apache) 501(IIS) if its disabled, 200 if it is', 'Description' => 'Test if TRACE is actually enabled. 405 (Apache) 501(IIS) if its disabled, 200 if it is',
'Author' => ['CG'], 'Author' => ['CG'],
'License' => MSF_LICENSE 'License' => MSF_LICENSE
@ -45,18 +45,18 @@ class Metasploit3 < Msf::Auxiliary
print_good("Response Body:\n #{res.body}") print_good("Response Body:\n #{res.body}")
print_good("TRACE appears to be enabled on #{target_host}:#{rport} \n") print_good("TRACE appears to be enabled on #{target_host}:#{rport} \n")
report_note( report_note(
:host => target_host, :host => target_host,
:port => rport, :port => rport,
:proto => 'tcp', :proto => 'tcp',
:sname => (ssl ? 'https' : 'http'), :sname => (ssl ? 'https' : 'http'),
:type => 'TRACE', :type => 'service.http.method.trace',
:data => "TRACE Method is enabled.", :data => "TRACE method is enabled for this service",
:update => :unique_data :update => :unique_data
) )
elsif (res.code == 501)#Not Implemented elsif (res.code == 501)#Not Implemented
print_error("Received #{res.code} TRACE is not enabled for #{target_host}:#{rport}")#IIS print_error("Received #{res.code} TRACE is not enabled for #{target_host}:#{rport}") #IIS
elsif (res.code == 405)#Method Not Allowed elsif (res.code == 405)#Method Not Allowed
print_error("Received #{res.code} TRACE is not enabled for #{target_host}:#{rport}")#Apache print_error("Received #{res.code} TRACE is not enabled for #{target_host}:#{rport}") #Apache
else else
print_status("#{res.code}") print_status("#{res.code}")
end end