infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update dlsw_leak_capture name and print_ 

This makes it more obvious exactly what is being scanned for
bug/bundler_fix
Jon Hart 2014-12-04 17:20:01 -08:00
parent 3aecd3a10e
commit f0cfcd4faf
No known key found for this signature in database
GPG Key ID: 2FA9F0A3AFA8E9D3
1 changed files with 5 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
modules/auxiliary/scanner/dlsw/dlsw_leak_capture.rb
View File

@ -13,10 +13,10 @@ class Metasploit3 < Msf::Auxiliary
def initialize
super(
'Name' => 'Cisco DLSw Information Leak Scanner',
'Name' => 'Cisco DLSw Information Disclosure Scanner',
'Description' => %q(
This module implements the DLSw information leak retrieval. There is
a bug in Cisco's DLSw implementation affecting 12.x and 15.x trains
This module implements the DLSw information disclosure retrieval. There
is a bug in Cisco's DLSw implementation affecting 12.x and 15.x trains
that allows an unuthenticated remote attacker to retrieve the partial
contents of packets traversing a Cisco router with DLSw configured
and active.
@ -55,7 +55,7 @@ class Metasploit3 < Msf::Auxiliary
# Called when using check
def check_host(_ip)
print_status("#{peer}: Checking for DLSw exposure")
print_status("#{peer}: Checking for DLSw information disclosure (CVE-2014-7992)")
response = get_response
if response.blank?
@ -72,7 +72,7 @@ class Metasploit3 < Msf::Auxiliary
# TODO: check that response has something that truly indicates it is vulnerable
# and not simply that it responded
unless response[18..72].scan(/\x00/).length == 54
print_good("#{peer}: leaked #{response.length} bytes")
print_good("#{peer}: vulnerable to DLSw information disclosure; leaked #{response.length} bytes")
report_vuln(
host: rhost,
port: rport,