infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
21,806 Commits
7 Branches
556 Tags
419 MiB
Commit Graph

21806 Commits (468654d2b5ac5587bae45e7a5aafb2fbb0a79402)

Author SHA1 Message Date
jvazquez-r7 288a1080db Add MS13-022 Silverlight app code 2013-11-22 16:53:06 -06:00
Tod Beardsley 6a28aa298e
Module for CVE-2013-4164 
So far, just a DoS. So far, just tested on recent Rails with Webrick and
Thin front ends -- would love to see some testing on ngix/apache with
passenger/mod_rails but I don't have it set up at the moment.
 2013-11-22 16:51:02 -06:00
jvazquez-r7 136c18c070 Add binary objects for MS13-022 2013-11-22 16:45:07 -06:00
jvazquez-r7 a7ad107e88 Add ruby code for ms13-022 2013-11-22 16:41:56 -06:00
Karn Ganeshen 266de2d27f Updated 2013-11-23 00:01:03 +03:00
William Vu d670b7c972
Land #2674, Ruby 1.9.3-p484 (CVE-2013-4164) 2013-11-22 13:21:32 -06:00
sinn3r 953a96fc2e This one looks promising 2013-11-22 12:27:10 -06:00
Tod Beardsley b69a67251f
Revert CVE-2013-4164 test 
This reverts commit 7688211009.
 2013-11-22 12:26:51 -06:00
Tod Beardsley 994d4e94c6 Revert "Force Travis to Ruby 1.9.3-p484" 
This reverts commit 25b0c86855.
 2013-11-22 12:26:05 -06:00
Tod Beardsley 25b0c86855
Force Travis to Ruby 1.9.3-p484 2013-11-22 12:21:29 -06:00
Tod Beardsley 7688211009
Add a test for CVE-2013-4164. Will crash old Ruby! 
If you are not on a recent version of Ruby, you will segfault.
 2013-11-22 12:14:51 -06:00
sinn3r 8476ca872e More progress 2013-11-22 11:53:57 -06:00
Tod Beardsley fd009f1e46
Update default ruby to 1.9.3-p484 (CVE-2013-4164) 
See
https://www.ruby-lang.org/en/news/2013/11/22/ruby-1-9-3-p484-is-released/
 2013-11-22 11:20:21 -06:00
sinn3r f1d181afc7 Progress 2013-11-22 04:51:55 -06:00
sinn3r 6d5c1c230c Progress 2013-11-22 03:55:40 -06:00
OJ 388064b78b Add -x and -s parameters to uploadexec 
Added -x parameter to the script which indicates that the underlying
meterpreter session should be terminated when the execution has
finished.

Added -s parameter which takes a floating point number as an arg
which indicates the number of seconds to sleep between uploading
and executing. This helps in the case where http(s) payloads are
used for meterpreter and a time delay is needed to make sure that
the file has been written to disk and the lock released prior to
attempting to executing it.
 2013-11-22 18:59:01 +10:00
William Vu bcf0954fd8
Land #2672, multi_console_command default usage 2013-11-22 02:55:07 -06:00
William Vu 3c9d33eb3b
Land #2671, desktopcentral_file_upload name change 2013-11-22 02:51:55 -06:00
sinn3r 4d2253fe35 Diet 2013-11-22 02:25:09 -06:00
OJ 19ea29c6e7 Add usage when -rc -cl or -h are not passed 
While testing stuff earlier today I had to use this script and I made the
mistake of not passing in the -rc flag to the script. I was confused for ages!

This change prints the usage message in the case where you don't pass proper
parameters to the script.
 2013-11-22 12:47:04 +10:00
sinn3r 8382d31f46 More progress 2013-11-21 18:48:12 -06:00
jvazquez-r7 885fedcc3b Fix target name 2013-11-21 17:42:31 -06:00
sinn3r 22c7703e8b
Land #2658 - Make OGNL expressions compatible with struts 2.0.11.2 2013-11-21 15:30:42 -06:00
sinn3r 56d1c545e7 Oh look, more code 2013-11-21 14:42:07 -06:00
William Vu 13f8a690a9
Land #2669, msftidy Ruby payload std{out,err} fix 2013-11-21 13:16:28 -06:00
jvazquez-r7 851cf6f0d1
Land #2650, @pnegry's exploit for DesktopCentral 8 2013-11-21 09:30:17 -06:00
jvazquez-r7 77aa665385 Add Privileged flag 2013-11-21 09:28:28 -06:00
jvazquez-r7 2ab3ab8b66 Delete empty Payload metadata section 2013-11-21 09:27:25 -06:00
jvazquez-r7 6bd3c4c887 Fix target name 2013-11-21 09:07:25 -06:00
jvazquez-r7 4c2ad4ca9a Fix metadata 2013-11-21 09:06:47 -06:00
jvazquez-r7 8e4c5dbb5e improve upload_file response check 2013-11-21 09:02:11 -06:00
jvazquez-r7 8fdfeb73db Fix use of FileDropper and improve check method 2013-11-21 09:01:41 -06:00
jvazquez-r7 4abf01c64c Clean indentation 2013-11-21 08:32:54 -06:00
sinn3r ddd5b0abb9 More progress 2013-11-21 04:27:41 -06:00
Karn Ganeshen b5011891a0 corrected rport syntax 2013-11-21 08:57:45 +03:00
Karn Ganeshen 9539972340 Module for OpenMind Message-OS portal login 2013-11-21 06:33:05 +03:00
Tod Beardsley 63d1a78cd2
Remove capturing parens and debug hexes. 2013-11-20 17:53:25 -06:00
Tod Beardsley 637ce058f5
Write a nonstupid regex (2-pass test) 2013-11-20 17:47:19 -06:00
Tod Beardsley 0ec9881a22
Fix stdout/stderr check to avoid ruby payloads 
[SeeRM #8498]

This knocks out all the non-datastore editing ERROR messages, so we've
got that going for us. Which is nice.
 2013-11-20 17:39:35 -06:00
Tod Beardsley 3926617972
Land #2664, clear EOL spaces 
[SeeRM #8498]
 2013-11-20 17:27:06 -06:00
Tod Beardsley e88da09894
Land #2660, DLL/service creation for x64 2013-11-20 17:25:16 -06:00
joev eea811b71a
Merge branch 'landing-2601-mipsle-encoders' into upstream-master 2013-11-20 17:14:45 -06:00
sinn3r e13e457d8f Progress 2013-11-20 17:11:13 -06:00
Tod Beardsley 5ef6c5bb44
Land #2668, avoid tidying nonfiles. 2013-11-20 16:57:57 -06:00
William Vu b75f5a8f45 Avoid crashing when msftidy'ing missing files 2013-11-20 16:36:07 -06:00
Tod Beardsley c7bf642972
Land #2665, shebang fix for msftidy. 2013-11-20 15:47:57 -06:00
William Vu 6c7a98ef47 Be more exact about shebang checking 2013-11-20 15:26:35 -06:00
Tod Beardsley 678a16b5ef
Land #2662, resplat. 2013-11-20 15:10:31 -06:00
William Vu 9f45121b23 Remove EOL spaces 2013-11-20 15:08:13 -06:00
William Vu e8eb983ae1 Resplat shell_bind_tcp_random_port 2013-11-20 14:48:53 -06:00