From e8b914a62f44bee41683425f5d03a5902d3f53e4 Mon Sep 17 00:00:00 2001
From: jvazquez-r7 <juan_vazquez@rapid7.com>
Date: Fri, 20 Jun 2014 14:33:02 -0500
Subject: [PATCH] Download rankings for reliable exploit, but depending on a
 specific version without autodetection

---
 .../linux/http/dlink_authentication_cgi_bof.rb     | 14 ++++++--------
 .../exploits/linux/http/dlink_hedwig_cgi_bof.rb    |  2 +-
 2 files changed, 7 insertions(+), 9 deletions(-)

diff --git a/modules/exploits/linux/http/dlink_authentication_cgi_bof.rb b/modules/exploits/linux/http/dlink_authentication_cgi_bof.rb
index d69f4b46c4..d55bf44b93 100644
--- a/modules/exploits/linux/http/dlink_authentication_cgi_bof.rb
+++ b/modules/exploits/linux/http/dlink_authentication_cgi_bof.rb
@@ -6,9 +6,7 @@
 require 'msf/core'
 
 class Metasploit3 < Msf::Exploit::Remote
-  Rank = ExcellentRanking
-
-  HttpFingerprint = { :pattern => [ /Linux,\ HTTP\/1.0,\ DIR-/ ] }
+  Rank = NormalRanking
 
   include Msf::Exploit::Remote::HttpClient
   include Msf::Exploit::CmdStagerEcho
@@ -34,11 +32,11 @@ class Metasploit3 < Msf::Exploit::Remote
       'Arch'           => ARCH_MIPSLE,
       'References'     =>
         [
-          [ 'OSVDB', '95951' ],
-          [ 'EDB', '27283' ],
-          [ 'URL', 'http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10008' ], #advisory on vendor web site
-          [ 'URL', 'http://www.dlink.com/us/en/home-solutions/connect/routers/dir-645-wireless-n-home-router-1000' ], #vendor web site of router
-          [ 'URL', 'http://roberto.greyhats.it/advisories/20130801-dlink-dir645.txt' ]  #original advisory
+          ['OSVDB', '95951'],
+          ['EDB', '27283'],
+          ['URL', 'http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10008'], #advisory on vendor web site
+          ['URL', 'http://www.dlink.com/us/en/home-solutions/connect/routers/dir-645-wireless-n-home-router-1000'], #vendor web site of router
+          ['URL', 'http://roberto.greyhats.it/advisories/20130801-dlink-dir645.txt']  #original advisory
         ],
       'Targets'        =>
         [
diff --git a/modules/exploits/linux/http/dlink_hedwig_cgi_bof.rb b/modules/exploits/linux/http/dlink_hedwig_cgi_bof.rb
index a2d4be7fbc..0fab416053 100644
--- a/modules/exploits/linux/http/dlink_hedwig_cgi_bof.rb
+++ b/modules/exploits/linux/http/dlink_hedwig_cgi_bof.rb
@@ -6,7 +6,7 @@
 require 'msf/core'
 
 class Metasploit3 < Msf::Exploit::Remote
-  Rank = ExcellentRanking
+  Rank = NormalRanking
 
   include Msf::Exploit::Remote::HttpClient
   include Msf::Exploit::CmdStagerEcho