Land #11255, Assign CVE number to spark unauth rce

2019-01-15 11:17:37 +08:00 · 2019-01-15 11:17:37 +08:00 · d8515ba056
parent e9a8d5708a 47f8738f74
commit d8515ba056
1 changed files with 3 additions and 0 deletions
--- a/modules/exploits/linux/http/spark_unauth_rce.rb
+++ b/modules/exploits/linux/http/spark_unauth_rce.rb
@ -19,11 +19,14 @@ class MetasploitModule < Msf::Exploit::Remote
      'License'        => MSF_LICENSE,
      'Author'         =>
        [
+          'Fengwei Zhang',                     # Original discovery
+          'Imran Rashid',
          'aRe00t',                            # Proof of concept
          'Green-m <greenm.xxoo[at]gmail.com>' # Metasploit module
        ],
      'References'     =>
        [
+          ['CVE', '2018-11770'], # see https://spark.apache.org/security.html
          ['URL', 'https://www.jianshu.com/p/a080cb323832'],
          ['URL', 'https://github.com/vulhub/vulhub/tree/master/spark/unacc']
        ],