980327dddf
Fix typo, redo add(), account for it in the loader
2012-06-17 01:59:19 -05:00
b4b1a4168e
Add missing module_detail_id's and references
2012-06-17 01:44:32 -05:00
38ad7230d2
Fix up a typo
2012-06-17 01:35:39 -05:00
e4fffc36de
Move to one to many instead of m2m for module_detail tracking
2012-06-17 01:21:38 -05:00
780b8ee48b
Remove the vulns_refs destroy, this causes issues
...
when the join table has no .id
2012-06-17 00:12:10 -05:00
be9b7a88fb
Complicate the matching process in the name of memory
...
and loading speed. Use optional match_details param
to find matching vuln instances.
2012-06-17 00:07:00 -05:00
7d9d6f11e5
Comitting a copy of the "old" mode of loading,
...
still hoping to avoid having to do this due to
memory bloat and slowness.
2012-06-16 22:42:31 -05:00
e72303a922
Add Intersil HTTP Basic auth pass reset (originally #453 )
...
The modified version of pull request #453 . This addresses a couple
of things including:
* Change the description to better explain what the vulnerability is.
The advisory focuses the problem as an auth bypass, not DoS,
although it can end up dosing the server.
* The title and filename are changed as a result of matching that
advisory's description.
* Use 'TARGETURI' option instead of 'URI'.
* The reset attempt needs to check if the directory actually has
401 in place, otherwise this may result a false-positive.
* The last HTTP request needs to check a possible nil return value.
* More verbose outputs.
2012-06-16 21:14:57 -05:00
52150b0e89
Merge branch 'master' into feature/vuln-info
2012-06-16 15:43:52 -05:00
8522d838dd
Permissions, ignore
2012-06-16 15:43:45 -05:00
6dd8fd2e05
Move the cache rebuild into a background job
2012-06-16 15:41:37 -05:00
931f24b380
Merge branch 'php_apache_request_headers_bof' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-php_apache_request_headers_bof
2012-06-16 14:56:45 -05:00
d0e490feaa
Merge branch 'module-ms-outlook-post-update' of https://github.com/justincmsf/metasploit-framework into justincmsf-module-ms-outlook-post-update
2012-06-16 14:56:14 -05:00
8425c8438d
Switch to a MDM/SQL-based module cache
2012-06-16 14:51:09 -05:00
cb1144c4ec
Added Revised windows file collector and loot module
2012-06-16 11:14:08 -04:00
a8a4594cd4
Documenting esi alignment plus using target_uri.to_s
2012-06-16 09:26:22 +02:00
7eebc671ba
Put the curly braces back and drop a comma
...
The curly braces make extra commas at the end ok in 1.8. So fe39642e
2012-06-16 01:17:33 -06:00
424948a358
Fix title
2012-06-16 01:48:00 -05:00
38926fb97c
Description and name change
2012-06-15 20:11:34 -05:00
c676708564
BrowserAutopwn info completed
2012-06-16 02:26:33 +02:00
ce241b7e80
BrowserAutopwn info completed
2012-06-16 02:18:01 +02:00
495ed2e434
BrowserAutopwn info added
2012-06-16 02:14:24 +02:00
8a89968a1d
Added module for CVE-2012-1889
2012-06-16 01:50:25 +02:00
7bb3679fef
Errors are different from mere failures (enum_dns)
...
This makes a clear distinction between errors and failures when
performing zone transfers, and logs accordingly.
[See #483 ]
2012-06-15 18:11:25 -05:00
122b34c703
fix missing bock transitions
...
the block objects weren't being transitioned over from the class
methods properly, so the callback blocks were never getting processed.
2012-06-15 14:25:47 -05:00
5e19918020
Updated MS Outlook post module
2012-06-15 15:06:18 -04:00
fe39642e27
Dropping extra curly braces on f5 module
...
Also dropping extra whitespace.
2012-06-15 12:23:34 -05:00
fbafea48c6
Merge branch 'master' into feature/vuln-info
2012-06-15 10:56:01 -05:00
5006db7550
The cert module now defaults SSL to true (didnt make sense)
2012-06-15 10:55:53 -05:00
b55f233f16
The cert module now defaults SSL to true (didnt make sense)
2012-06-15 10:55:07 -05:00
5a49ac50f1
Shorten option description on enum_dns
2012-06-15 10:33:49 -05:00
80a0b4767a
add osvdb ref
2012-06-15 09:02:31 -05:00
1d121071f3
Prepend nops to raw payload in encoder if needed
2012-06-15 09:59:10 +02:00
72c674cd3f
Merge branch 'master' of github.com:rapid7/metasploit-framework
2012-06-14 21:49:46 -05:00
80d46580ec
One last minor change for metadata format
2012-06-14 21:48:24 -05:00
82799f2601
Some final touchup
...
This commit includes the following changes:
* Description change
* Additional references
* More testing
* Format change
* Other minor stuff
2012-06-14 21:46:38 -05:00
75a67d7160
Merge branch 'module-tfm_mmplayer' of https://github.com/bcoles/metasploit-framework into bcoles-module-tfm_mmplayer
2012-06-14 21:14:29 -05:00
091b3bbbd9
Added module plus encoder for CVE-2012-2329
2012-06-15 00:29:52 +02:00
8177783681
Merge branch 'master' into feature/vuln-info
2012-06-14 16:21:51 -05:00
e2c1657eb4
Adds a block callback to work with the replicant
...
module instance prior to it being launched.
2012-06-14 16:21:06 -05:00
fb67fe9161
Merge branch 'mrmee-cmdsnd_ftp_exploit'
2012-06-14 14:19:56 -05:00
cde3c48765
Change title
2012-06-14 14:18:30 -05:00
b107025860
Correct typo. Also make use of random junks.
2012-06-14 14:17:57 -05:00
8e06babbba
Make msftidy happy
2012-06-14 14:16:07 -05:00
66e92d0200
Merge branch 'cmdsnd_ftp_exploit' of https://github.com/mrmee/metasploit-framework into mrmee-cmdsnd_ftp_exploit
2012-06-14 12:17:29 -05:00
e59b33fc76
Incorporate egypt's feedback
2012-06-14 10:43:09 -05:00
c1685c44c3
Fix disclosure date
2012-06-14 10:03:49 -05:00
1cdf964719
A little change to the description
2012-06-14 10:03:15 -05:00
abe50682dd
Merge branch 'lattice_pac' of https://github.com/wchen-r7/metasploit-framework into wchen-r7-lattice_pac
2012-06-14 09:59:43 -05:00
48ee81de29
Add CVE-2012-2915
2012-06-14 09:56:01 -05:00
HD Moore
sinn3r
3vi1john
jvazquez-r7
James Lee
Tod Beardsley
David Maloney
justincmsf
Steve Tornio