Merge branch 'master' of git://github.com/charles-n2netsec/metasploit-framework into charles-n2netsec-master

2012-12-18 18:01:28 -06:00 · 2012-12-18 18:01:28 -06:00 · ba242e1809
parent cad8abef48 2ccc3f9e71
commit ba242e1809
3 changed files with 33 additions and 14 deletions
--- a/modules/post/windows/gather/credentials/filezilla_server.rb
+++ b/modules/post/windows/gather/credentials/filezilla_server.rb
@ -186,14 +186,19 @@ class Metasploit3 < Msf::Post

 		configuration << [config['ftp_port'], config['ftp_bindip'], config['admin_port'], config['admin_bindip'], config['admin_pass'],
 			config['ssl'], config['ssl_certfile'], config['ssl_keypass']]
-			if session.db_record
-				source_id = session.db_record.id
-			else
-				source_id = nil
-			end
-			# report the goods!
+		if session.db_record
+			source_id = session.db_record.id
+		else
+			source_id = nil
+		end
+		# report the goods!
+		if config['admin_port'] == "<none>"
+			#if report_auth_info executes with admin_port equal to "<none>"
+			#the module will crash with an error.
+			vprint_status("(No admin information found.)")
+		else
 			report_auth_info(
-				:host  => session,
+				:host  => session.sock.peerhost,
 				:port => config['admin_port'],
 				:sname => 'filezilla-admin',
 				:proto => 'tcp',
@ -205,6 +210,7 @@ class Metasploit3 < Msf::Post
 				:target_host => config['admin_bindip'],
 				:target_port => config['admin_port']
 			)
+		end
 		
 		p = store_loot("filezilla.server.creds", "text/csv", session, credentials.to_csv,
 			"filezilla_server_credentials.csv", "FileZilla FTP Server Credentials")
--- a/modules/post/windows/gather/smart_hashdump.rb
+++ b/modules/post/windows/gather/smart_hashdump.rb
@ -289,6 +289,8 @@ class Metasploit3 < Msf::Post
 	def read_hashdump
 		host,port = session.session_host, session.session_port
 		collected_hashes = ""
+		tries = 0
+		
 		begin

 			print_status("\tObtaining the boot key...")
@ -334,8 +336,19 @@ class Metasploit3 < Msf::Post
 		rescue ::Interrupt
 			raise $!
 		rescue ::Rex::Post::Meterpreter::RequestError => e		
-			print_error("Meterpreter Exception: #{e.class} #{e}")
-			print_error("This module requires the use of a SYSTEM user context (hint: migrate into service process)")
+			# Sometimes we get this invalid handle race condition.
+			# So let's retry a couple of times before giving up.
+			# See bug #6815
+			if tries < 5 and e.to_s =~ /The handle is invalid/
+				print_status("Handle is invalid, retrying...")
+				tries += 1
+				retry
+
+			else
+				print_error("Meterpreter Exception: #{e.class} #{e}")
+				print_error("This script requires the use of a SYSTEM user context (hint: migrate into service process)")
+			end
+			
 		rescue ::Exception => e
 			print_error("Error: #{e.class} #{e} #{e.backtrace}")
 		end
--- a/modules/post/windows/manage/migrate.rb
+++ b/modules/post/windows/manage/migrate.rb
@ -48,10 +48,10 @@ class Metasploit3 < Msf::Post
 		if datastore['SPAWN']
 			print_status("Spawning notepad.exe process to migrate to")
 			target_pid = create_temp_proc
-		elsif datastore['PID']
+		elsif datastore['PID'] != 0
 			target_pid = datastore['PID']
 		elsif datastore['NAME']
-			target_pid = session.sys.process[datstore['NAME']]
+			target_pid = session.sys.process[datastore['NAME']]
 		end

 		if not target_pid