wchen-r7
52bcade72c
Fix #6948 , Modules using the SMB client are printing peer twice
...
Fix #6948
2016-06-08 12:16:50 -05:00
wchen-r7
db85f25998
Land #6793 , Add Symantec Messaging Gateway to extract stored AD pass
2016-06-07 19:40:50 -05:00
wchen-r7
036ba8057a
Add module doc for symantec_brightmail_ldapcreds
2016-06-07 19:39:55 -05:00
wchen-r7
f13d91f685
Fix a prob of printing an empty rhost from the scanner mixin
2016-06-07 19:19:39 -05:00
wchen-r7
e8304e684c
Bring #6793 up to date with upstream-master
2016-06-07 19:04:32 -05:00
wchen-r7
6ae4d1576e
Apply fixes to symantec_brightmail_ldapcreds.rb
2016-06-07 19:01:58 -05:00
Metasploit
815685992a
Bump version of framework to 4.12.7
2016-06-07 13:14:34 -07:00
Brian Patterson
6d72b5b19f
Land #6946 Fix a bug with OptPort validation when not req
2016-06-07 14:43:10 -05:00
David Maloney
53b989f283
fix normalisation so we don't coerce to 0
...
don't coerce nil to 0
2016-06-07 14:29:13 -05:00
David Maloney
16030cda30
simpler fix
...
talking with adam shows that there is a simpler solution
to this problem
2016-06-07 14:13:10 -05:00
David Maloney
9de27e0b9c
add more specific normalise method to otpport
...
add a normalise method that prevents emtpy string
from being converted to 0 for OptPort avoiding
a bad behaviour
2016-06-07 14:03:34 -05:00
David Maloney
27b5d961fd
fixes a bug with OptPort validation when not req
...
OptPort lost the check for whether the option was required causing it
to incorrectly return false in certain cases
MS-1633
2016-06-07 13:48:57 -05:00
Brendan Watters
c4aa99fdac
Land #6925 , ipfire proxy exec
2016-06-07 10:24:59 -05:00
Brendan Watters
cfde0a0ade
Land #6924 , IPFire shellshock exploit
2016-06-07 09:46:40 -05:00
Brendan Watters
7e84c808b2
Merge remote-tracking branch 'upstream/pr/6924' into dev
2016-06-07 09:24:25 -05:00
wchen-r7
b59d10d9c4
Land #6929 , Add HP Data Protector Encrypted Comms exploit
2016-06-06 22:45:53 -05:00
wchen-r7
d8d6ab3ae8
Add hp_dataprotector_encrypted_comms.md
2016-06-06 22:45:17 -05:00
wchen-r7
60c60bf004
Minor cosmetic changes
2016-06-06 22:45:00 -05:00
Louis Sato
d3a13f4b0c
Merge pull request #6942 from acammack-r7/bug/MS-1517/fix-acunetix-again
...
Fix Acunetix import with a blacklist
2016-06-05 23:00:48 -05:00
Adam Cammack
08f1e68487
Fix Acunetix import with a blacklist
...
If a host is blacklisted, we won't create the service for it. If we
don't create the service, we don't want to create entries for the web
pages.
MS-1517
2016-06-03 19:40:29 -05:00
h00die
2f837d5d60
fixed EDB spelling
2016-06-03 17:17:36 -04:00
h00die
8d76bdb8af
fixed EDB reference
2016-06-03 17:13:36 -04:00
h00die
c553353fab
Merge pull request #3 from bwatters-r7/land-6924
...
Suggested updates for style and clarity
2016-06-03 17:04:44 -04:00
h00die
88b60db5fb
Merge pull request #2 from bwatters-r7/land-6925-
...
Changes per rubocop and sinn3r
2016-06-03 17:04:04 -04:00
Brendan Watters
d7cd10f586
Suggested updates for style and clarity
2016-06-03 14:04:58 -05:00
Brent Cook
da532ecc5e
Land #6919 , Move LURI into a full URI for a new 'Payload opts" column in jobs output
2016-06-03 13:57:47 -05:00
Brendan Watters
91658d2a61
Changes per rubocop and sinn3r
2016-06-03 12:42:38 -05:00
Brent Cook
5420848c49
Land #6922 , add popen() additional vector to ImageMagick exploit (imagemagick_delegate)
2016-06-03 08:06:07 -05:00
Brent Cook
f034952852
Land #6918 , Added additional SAP TCP/IP ports into the sap_port_info function.
2016-06-03 08:01:04 -05:00
Brent Cook
09e721c4eb
See #6885 , merge tiny whitespace fix
2016-06-03 08:00:24 -05:00
Brent Cook
d5c2a8e3c8
whitespace
2016-06-03 07:59:48 -05:00
Brent Cook
d371fd0798
Land #6885 , add aux control module for PhoenixContact PLCs
2016-06-03 07:50:39 -05:00
Brent Cook
ba9a693435
condense a little more
2016-06-03 07:50:13 -05:00
Brent Cook
064d6b3f51
wording and formatting updates
2016-06-03 07:42:54 -05:00
wchen-r7
2423a336a4
Land #6937 , Magento Unserialize() Remote Code Execution
2016-06-02 17:14:07 -05:00
wchen-r7
1dad9bf7fa
Correct module doc path for magento_unserialize.md
2016-06-02 17:12:39 -05:00
wchen-r7
184802d7d1
Add documentation for magento_unserialize
2016-06-02 17:10:26 -05:00
wchen-r7
f333481fb8
Add vendor patch info
2016-06-02 16:41:06 -05:00
wchen-r7
7c9227f70b
Cosmetic changes for magento_unserialize to pass msftidy & guidelines
2016-06-02 16:34:41 -05:00
William Vu
9128ba3e57
Add popen() vuln to ImageMagick exploit
...
So... we've actually been sitting on this vuln for a while now. Now that
the cat's out of the bag [1], I'm updating the module. :)
Thanks to @hdm for his sharp eye. ;x
[1] http://permalink.gmane.org/gmane.comp.security.oss.general/19669
2016-06-02 11:35:37 -05:00
William Vu
43c82f764d
Land #6938 , typo fix for md5_lookup tool
2016-06-02 11:19:47 -05:00
James Barnett
e0cf4721c5
Land #6927 , Fix exception handling in #exploit_simple
2016-06-02 11:15:25 -05:00
Andrey
92b62d010f
Update md5_lookup.rb
...
:)
2016-06-02 18:49:22 +03:00
Brian Patterson
7dfb06d632
Land #6933 host tags commands eagerloaded instead of joining
2016-06-02 09:49:40 -05:00
Brian Patterson
dbc1cf4141
Merge remote-tracking branch 'upstream/master' into landing-6933
2016-06-02 09:42:39 -05:00
mr_me
4f42cc8c08
Added module
2016-06-02 09:24:10 -05:00
Brian Patterson
22bea44785
Land #6935 disable SSL tests that no longer work on Travis
2016-06-02 09:23:27 -05:00
Brent Cook
c99505923f
disable SSL tests that no longer work on Travis
2016-06-01 16:33:34 -05:00
David Maloney
ffa4177575
missed a few joins
...
missed a few joins statements before
MS-1593
2016-06-01 15:32:51 -05:00
David Maloney
2047475901
host tags commands eagerloaded instead of joining
...
someone tried to fix a rails deprecation warning by doing an
eager load, but caused an actual exception instead. switching to
propper joins makes everything work properly
MS-1593
2016-06-01 13:50:38 -05:00