4943b4c694
Bug fix from mubix (ruby 1.8 syntax)
2012-05-15 23:05:22 -05:00
b89e77c842
Add Spanish dir path. Thanks Miguel
2012-05-15 19:27:48 -05:00
8428d16db3
Format correction
2012-05-15 19:21:16 -05:00
3cd66402b7
Merge branch 'master' of https://github.com/FireFart/metasploit-framework into FireFart-master
2012-05-15 18:35:48 -05:00
19e32c210a
Added more references
2012-05-15 23:59:30 +02:00
46e58f8618
Ruby naming style
2012-05-15 23:53:33 +02:00
5f0075e24f
Revert API change
2012-05-15 23:28:51 +02:00
f5698f4bdc
Msftidy on mozilla_attribchildremoved.rb
...
was executable, had bad spacing.
2012-05-15 15:45:07 -05:00
82885cc6e5
Fixing author tags
...
Ensuring a space between name and email.
2012-05-15 15:45:07 -05:00
bc6ec537f9
Fix a ruby 1.8 compat error
...
Can't have commas at the end of argument lists.
2012-05-15 11:53:49 -06:00
b298597218
Switched to Http Library, Code formatting issues
2012-05-15 19:43:28 +02:00
4ee24f7e42
Adding Justin's CCTV module.
2012-05-15 08:03:39 -05:00
8b06835109
Make changes to proper API usage, whitespace, and extra characters.
2012-05-15 01:26:42 -05:00
3c683fcf99
Merge branch 'pyoor' of https://github.com/pyoor/metasploit-framework into pyoor-pyoor
2012-05-15 01:20:01 -05:00
d54a228f65
Correct version number
2012-05-15 01:16:41 -05:00
a8b534ddec
Cisco Secure ACS Module - Updated error handling
2012-05-14 20:03:26 -04:00
2e49e56126
Made suggested changes
2012-05-14 19:50:34 -04:00
6bbf018423
Fix bug #6815 : A race condition that results in an invalid handle.
...
Under certain conditions, the module may run into an "The handle
is invalid" while obtaining registry keys and values from the
victim machine. The fix is to retry a couple of times, and hope
we don't hit the race condition again.
2012-05-14 17:44:35 -05:00
84269f399b
Correct EDB reference
2012-05-14 15:10:21 -05:00
f4a446a6c1
Add module CVE-2011-4404
2012-05-14 15:08:43 -05:00
7690e86a89
add osvdb ref
2012-05-14 07:14:10 -05:00
bcfa96ced8
add osvdb ref
2012-05-14 07:13:49 -05:00
6b6dc60b25
Cisco Secure ACS Auth Bypass Module
2012-05-13 16:16:18 -04:00
dc10fac885
Ported my Hashcollision Script to Ruby
2012-05-13 20:59:42 +02:00
79a590ccf7
Merge pull request #380 from wchen-r7/bmerinofe-telnet_ruggedcom
...
Modified version of pull request #379 - RuggedCom Telnet Password Generator by bmerinofe
2012-05-13 11:13:27 -07:00
d2c26f989c
Cleanup whitespace
2012-05-13 04:42:22 -05:00
c1fbf1f931
Merge branch 'mozilla_attribchildremoved' of https://github.com/corelanc0d3r/metasploit-framework into corelanc0d3r-mozilla_attribchildremoved
2012-05-13 04:37:49 -05:00
dd42c3096e
added exploit for Firefox 8&9 AttributeChildRemoved UAF
2012-05-13 11:31:46 +02:00
15fbb1e86c
This the modified version of pull request #379 . Changes include:
...
* Add more references
* Update description
* MSF license disclaimer
* Remove the to() function. Instead it's in run_host()
* Put 'info' in the :proof key
* Remove ::Exception handling, so we can see the original that's also logged in framework.log
2012-05-13 04:09:17 -05:00
bc1c9a7fe4
Prepend all messages with victim host:port
...
Redefining print_status locally to handle this. Seems like an easy way
to do this kind of thing for a particular module.
[Closes #272 ]
2012-05-11 17:48:54 -05:00
ab655677b4
Fixed typo, converted to OptEnum for fakedns targetaction
2012-05-11 17:12:31 -05:00
af71cdafe2
Update modules/auxiliary/server/fakedns.rb
2012-05-11 17:01:14 -05:00
1d6b2eb3fe
Added TARGETACTION options and wildcard support
2012-05-11 17:01:13 -05:00
5d8fbefc3d
Merge pull request #378 from wchen-r7/distinct
...
Add OSVDB-80984 - Distinct TFTP Directory traversal
2012-05-11 13:14:19 -07:00
653d7e5923
Add OSVDB-80984
2012-05-11 15:07:31 -05:00
aa3930fcb9
Typo on fixed tftp module
2012-05-10 21:42:33 -05:00
36c805c5ff
Move the context setting to the module
...
Apparently you can't hit the framework object before running the module
any more. Bummer.
[Fixes #6843 ]
2012-05-10 21:21:32 -05:00
7eabce8872
Add comment for PrependEncoder
2012-05-10 12:18:50 -05:00
2b13330483
Merge pull request #376 from wchen-r7/wikkawiki
...
Add CVE-2011-4449
2012-05-10 10:13:56 -07:00
6e8c3ad1e3
It's "inject", not "upload"... because technically that's what really happens.
2012-05-10 12:06:02 -05:00
c69e34d407
Update description
2012-05-10 12:02:55 -05:00
86c3ad5e0c
Add CVE-2011-4449
2012-05-10 11:57:40 -05:00
65800f7c6e
Whitespace on solarwinds
2012-05-09 12:47:22 -05:00
536fa39ae8
Keep the client and the server on tracked tcp sessions
2012-05-08 16:38:12 -06:00
452cead1e9
Merge psnuffle ntlmv2 support from Alex Malateaux
...
Testing this with smbclient requires setting "client ntlmv2 auth = yes"
in /etc/samba/smb.conf
Squashed commit of the following:
commit 7acc32f5f00914fed355a080ca237543448f80ca
Author: Alexandre Maloteaux <a.maloteaux@gmail.com>
Date: Thu Apr 12 01:52:49 2012 +0100
psnuffle : move protocol filtering in load function
commit 9c9ae9711c760b4f072271b7e5993f9bf8366671
Author: Alexandre Maloteaux <a.maloteaux@gmail.com>
Date: Thu Apr 12 01:50:48 2012 +0100
psnuffle : add hash exctratiopn from smbv2 session
[Closes #327 ]
2012-05-08 13:41:42 -06:00
86500aad47
Author is always singular.
2012-05-08 08:47:52 -05:00
91a8ff2766
Use print_good when SQL injection is found
2012-05-08 01:30:13 -05:00
fa9d23d839
When a blind SQL injection, it's a good thing (for the attacker), so we should use print_good
2012-05-08 01:26:39 -05:00
ce16ab662c
Cosmetic changes. Also lower the rank for now, because I picked up a state where it can be less stable.
2012-05-08 00:22:19 -05:00
22585ad935
Merge branch 'firefox_exploit' of https://github.com/lincoln-corelan/metasploit-framework into lincoln-corelan-firefox_exploit
2012-05-08 00:00:03 -05:00
HD Moore
sinn3r
Christian Mehlmauer
Tod Beardsley
James Lee
pyoor
Steve Tornio
sinn3r
Peter Van Eeckhoutte (corelanc0d3r)
Jose Selvi
Alexandre Maloteaux