Commit Graph

408 Commits (59468846e3ebe479ffed0a69364b10c112416c1c)

Author SHA1 Message Date
David Rude 76f0226ff0 Adds the RealVNC Null Authentication Bypass exploit - gj thelightcosine =)
git-svn-id: file:///home/svn/framework3/trunk@13641 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-26 04:40:21 +00:00
David Rude c78ba0e4d5 hehe remove debugging put call
git-svn-id: file:///home/svn/framework3/trunk@13586 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-19 05:59:32 +00:00
David Rude 63e2b759e7 require the URI option
git-svn-id: file:///home/svn/framework3/trunk@13585 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-19 05:54:58 +00:00
David Rude 402ca57bb4 Adds Struts2 Remote Code Execution exploit CVE-2010-1870
git-svn-id: file:///home/svn/framework3/trunk@13584 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-19 05:52:09 +00:00
Steve Tornio 28177fd255 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@13505 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-10 02:54:56 +00:00
HD Moore f1afbacb2a Cron'd
git-svn-id: file:///home/svn/framework3/trunk@13485 4d416f70-5f16-0410-b530-b9f4589650da
2011-08-04 17:36:01 +00:00
James Lee d58d061735 complain if the given applet name is not formatted correctly, fixes #5082
git-svn-id: file:///home/svn/framework3/trunk@13389 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-28 17:46:36 +00:00
Tod Beardsley df52bfaa4f Ensure that we check for pcaprub before doing much anything else for those modules that actually require it. In some cases, that means moving open_pcap() up to be the first method call, in others, insert check_pcaprub_loaded first. Also removes a few cases of redundant checking (the Capture mixin does all this already anyway).
git-svn-id: file:///home/svn/framework3/trunk@13381 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 20:21:47 +00:00
Tod Beardsley b22ca615c7 Fixes #5038, missed a couple mentions of Racket. Excised now for sure.
git-svn-id: file:///home/svn/framework3/trunk@13371 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-27 17:44:36 +00:00
Tod Beardsley c54e18d757 Fixes #5038. Removes all instances of Racket objects, as far as I can tell. If I missed any through my mighty grep -ril racket . statement, please reopen!
git-svn-id: file:///home/svn/framework3/trunk@13342 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-26 01:29:21 +00:00
Wei Chen f47a2c7565 Format dictatorship round 2: Fix author e-mail format for all exploit modules
git-svn-id: file:///home/svn/framework3/trunk@13297 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-22 20:17:58 +00:00
Wei Chen d13654740a Update some jboss modules' metadata associated with CVE-2010-0738
git-svn-id: file:///home/svn/framework3/trunk@13204 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-18 05:18:25 +00:00
James Lee 1d25a6d7d1 add an exploit for java's rmid and rmiregistry code-execution-by-design and supporting source. fixes #4378, thanks mihi!
git-svn-id: file:///home/svn/framework3/trunk@13185 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 20:42:31 +00:00
Matt Weeks 1162aafa1e p function causes problems with rpc.
git-svn-id: file:///home/svn/framework3/trunk@13184 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 18:45:05 +00:00
James Lee c412a836ed add VERBOSE option to all modules and vprint_* methods to use it
git-svn-id: file:///home/svn/framework3/trunk@13183 4d416f70-5f16-0410-b530-b9f4589650da
2011-07-15 15:33:35 +00:00
James Lee 8e5311cb61 File.read is not binary safe. replace it with File.open in a few places where it matters.
git-svn-id: file:///home/svn/framework3/trunk@12957 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-16 22:02:00 +00:00
James Lee ea5dc1c85c use the right uri for our jar when other webserver modules are running
git-svn-id: file:///home/svn/framework3/trunk@12944 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-14 23:57:10 +00:00
HD Moore eea05fcaaa Correct the parent class name
git-svn-id: file:///home/svn/framework3/trunk@12930 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-12 19:31:38 +00:00
HD Moore 7f3e2d182d Fix Axis2 to inherit from the correct class, prevent a stack trace when a non-Remote exploit has the cleanup method called.
git-svn-id: file:///home/svn/framework3/trunk@12928 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-12 18:32:27 +00:00
HD Moore 85f5e5fb98 Fix the disclosure date to match when signing was made available to the masses
git-svn-id: file:///home/svn/framework3/trunk@12891 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-09 17:08:05 +00:00
HD Moore c3c061334d Add a "disclosure date" (applets were included in the first java release) and changing the title.
git-svn-id: file:///home/svn/framework3/trunk@12883 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-08 03:31:49 +00:00
James Lee 1c4bf118e8 add a version check
git-svn-id: file:///home/svn/framework3/trunk@12847 4d416f70-5f16-0410-b530-b9f4589650da
2011-06-03 23:47:44 +00:00
James Lee 5b91eadb87 fix the string replacement and do it at setup time instead of for every request
git-svn-id: file:///home/svn/framework3/trunk@12747 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-27 19:36:12 +00:00
James Lee cd3f306ef2 clarify info a bit; make APPLETNAME option actually do something.
git-svn-id: file:///home/svn/framework3/trunk@12746 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-27 19:13:47 +00:00
James Lee 5a54a408f5 stupid debugging stuff
git-svn-id: file:///home/svn/framework3/trunk@12736 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-26 19:10:54 +00:00
James Lee c5781ae515 add support for PKCS12 (.pfx) cert/key files and cert chains in PEM files
git-svn-id: file:///home/svn/framework3/trunk@12735 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-26 17:52:12 +00:00
James Lee 11a1b5dcad fix the requires for java signing.
git-svn-id: file:///home/svn/framework3/trunk@12719 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 18:02:02 +00:00
James Lee 812bae9df9 add support for signing applets (or any other jar) with openssl. this removes the need for a dependency on RJB
git-svn-id: file:///home/svn/framework3/trunk@12718 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-25 16:45:20 +00:00
James Lee ef48240606 Make it obvious which exploit is handling a request
git-svn-id: file:///home/svn/framework3/trunk@12693 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-23 17:05:44 +00:00
James Lee 04efaf9281 referencing navigator.javaEnabled breaks ie6, only check navigator.javaEnabled();
git-svn-id: file:///home/svn/framework3/trunk@12655 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-17 22:44:39 +00:00
David Rude a8b6c43636 reverting the disclosure dates for now need to clean up the patch
git-svn-id: file:///home/svn/framework3/trunk@12540 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 20:43:19 +00:00
David Rude 3b7ea08f6a Fixes a ton of Disclosure Date discrepencies in various modules, thanks a ton to Michael Baker for spending the time to ensure accuracy
git-svn-id: file:///home/svn/framework3/trunk@12539 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:17:31 +00:00
David Rude 3b5cf3826a Added TheLightCosines OpenSSL ChangeCipherSpec DoS aux module
git-svn-id: file:///home/svn/framework3/trunk@12538 4d416f70-5f16-0410-b530-b9f4589650da
2011-05-04 19:08:28 +00:00
Steve Tornio 319b4993a4 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12397 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 19:38:42 +00:00
David Rude 0f9a232025 Added Spreecommerce Remote Code Execution exploit module - thanks joernchen
git-svn-id: file:///home/svn/framework3/trunk@12392 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 16:57:17 +00:00
Wei Chen 6d71990dfc Disclosure date change
git-svn-id: file:///home/svn/framework3/trunk@12390 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-21 15:40:59 +00:00
Joshua Drake d2374a435f add .jar extension, thx for the contribution!
git-svn-id: file:///home/svn/framework3/trunk@12285 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-09 17:03:41 +00:00
Steve Tornio 46d88f54f6 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@12242 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 01:08:07 +00:00
David Rude 0bea0233a0 add the slash =)
git-svn-id: file:///home/svn/framework3/trunk@12241 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 00:13:01 +00:00
David Rude ce7b72bfce Use get_uri instead of manually building the path
git-svn-id: file:///home/svn/framework3/trunk@12240 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-05 00:08:36 +00:00
David Rude 7816b87595 Added Zend Java Bridge exploit module java meterpreter ftw
git-svn-id: file:///home/svn/framework3/trunk@12239 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-04 23:39:27 +00:00
Joshua Drake f0673cb1ac Tweak to work with FreeBSD, thx for the patch!
git-svn-id: file:///home/svn/framework3/trunk@12224 4d416f70-5f16-0410-b530-b9f4589650da
2011-04-03 17:40:45 +00:00
David Rude c5ce597483 removing coldfusion until some general code fixes can be applied
git-svn-id: file:///home/svn/framework3/trunk@11995 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 21:41:47 +00:00
Mario Ceballos dfd2df6b47 puts this in the appropiate place
git-svn-id: file:///home/svn/framework3/trunk@11987 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-16 10:22:07 +00:00
amaloteaux 5f6995e8d3 enable ntlmv2 and signing for smb client stack (pth implementation is coming), fixes #11678 and #152
git-svn-id: file:///home/svn/framework3/trunk@11893 4d416f70-5f16-0410-b530-b9f4589650da
2011-03-07 19:57:53 +00:00
HD Moore f49e040a96 This patch adds a ListenerTimeout option to multi/handler that sets a maximum wait time for sessions. This is useful to prevent leftover background handlers by unsuccessful or misconfigured post modules.
git-svn-id: file:///home/svn/framework3/trunk@11845 4d416f70-5f16-0410-b530-b9f4589650da
2011-02-28 03:22:40 +00:00
Joshua Drake 1604b5616f apply some more changes from Konrads
git-svn-id: file:///home/svn/framework3/trunk@11533 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-10 14:34:24 +00:00
Joshua Drake 9ef757bf17 Fixes #3387, add the PACKAGE option to allow 3.2
git-svn-id: file:///home/svn/framework3/trunk@11518 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 04:11:01 +00:00
Joshua Drake 287f4c87fe style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11516 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-08 01:13:26 +00:00
James Lee a79092a0d3 this is really unlimited, but bump it a bit for possible larger payloads later.
git-svn-id: file:///home/svn/framework3/trunk@11474 4d416f70-5f16-0410-b530-b9f4589650da
2011-01-04 23:37:11 +00:00
James Lee fd1fb44bfc add targets for windows and linux
git-svn-id: file:///home/svn/framework3/trunk@11345 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-15 22:46:22 +00:00
James Lee dd6afdc74c make these titles a little clearer
git-svn-id: file:///home/svn/framework3/trunk@11330 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-14 17:26:44 +00:00
James Lee 05d073c467 move the evil-looking metasploit.PayloadApplet to the more inocuous SiteLoader.class, re-enable rjb compiling for the applet class
git-svn-id: file:///home/svn/framework3/trunk@11249 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-07 20:43:53 +00:00
James Lee 62a425f6b6 add rjb signing back in to java_signed_applet
git-svn-id: file:///home/svn/framework3/trunk@11186 4d416f70-5f16-0410-b530-b9f4589650da
2010-12-01 01:29:08 +00:00
Joshua Drake 26a9fe6fc7 add some missing CVE references
git-svn-id: file:///home/svn/framework3/trunk@11180 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 20:19:18 +00:00
Joshua Drake d5835fe7b0 remove commented out REST portion
git-svn-id: file:///home/svn/framework3/trunk@11179 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 19:11:42 +00:00
Joshua Drake 98e8ec4cc9 add REST version of axis2 deployer
git-svn-id: file:///home/svn/framework3/trunk@11178 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 18:17:33 +00:00
James Lee 191c4e8eb7 make java_signed_applet work with generic java payloads, but keep the default target as Windows/x86 since it is by far the most common victim.
git-svn-id: file:///home/svn/framework3/trunk@11172 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 03:50:40 +00:00
Joshua Drake 1eda716b70 fix another ruby-ism problem checking modulus return
git-svn-id: file:///home/svn/framework3/trunk@11166 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-30 00:16:53 +00:00
Joshua Drake e9faf75503 fix some more titles with periods
git-svn-id: file:///home/svn/framework3/trunk@11127 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-24 19:35:38 +00:00
Joshua Drake f68fc02f9c include capture mixin for modules that use it
git-svn-id: file:///home/svn/framework3/trunk@11126 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-24 19:25:18 +00:00
Joshua Drake 1d8e1e332c add better error reporting
git-svn-id: file:///home/svn/framework3/trunk@11120 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-24 01:11:49 +00:00
Joshua Drake 2fe78ec685 double grammar fail
git-svn-id: file:///home/svn/framework3/trunk@11053 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-16 20:23:11 +00:00
Joshua Drake f4d2af3e73 fix typo
git-svn-id: file:///home/svn/framework3/trunk@11052 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-16 20:17:25 +00:00
Joshua Drake 25611afb6c add sap businessobject modules from jabra, woot!
git-svn-id: file:///home/svn/framework3/trunk@11046 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-15 05:12:48 +00:00
Joshua Drake 4a5bee45c5 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@11015 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-12 23:14:46 +00:00
Mario Ceballos 2aca76ef66 added exploit module freenas_exec_raw.rb. php/meterpreter ftw.
git-svn-id: file:///home/svn/framework3/trunk@11014 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-12 23:02:28 +00:00
James Lee 326dc42bca add EncodedPayload#encoded_exe, encoded_jar, and encoded_war. simplifies exploits that need java and native payloads. see #406 and #3009
git-svn-id: file:///home/svn/framework3/trunk@10999 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 23:01:35 +00:00
Joshua Drake 3992eb7ef8 Mass RE-update: fix all framework URL references
git-svn-id: file:///home/svn/framework3/trunk@10998 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 22:43:22 +00:00
Joshua Drake 9fc6f2f3a3 Mass update: fix all framework URL references
git-svn-id: file:///home/svn/framework3/trunk@10996 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-11 22:25:13 +00:00
Mario Ceballos 58f62bedda fix load errors
git-svn-id: file:///home/svn/framework3/trunk@10933 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-06 19:19:35 +00:00
Joshua Drake 2a69811344 raise RuntimeError instead of return
git-svn-id: file:///home/svn/framework3/trunk@10932 4d416f70-5f16-0410-b530-b9f4589650da
2010-11-06 18:09:28 +00:00
Joshua Drake 1f235a8c9b remove 64-bit targets since we dont have an x86_64 linux exe generator
git-svn-id: file:///home/svn/framework3/trunk@10833 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-27 17:21:54 +00:00
Joshua Drake be841a4810 check for failed serverinfo result
git-svn-id: file:///home/svn/framework3/trunk@10788 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-22 21:32:12 +00:00
James Lee 3b2c43fac4 get rid of the redundant second java target
git-svn-id: file:///home/svn/framework3/trunk@10785 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-22 20:07:18 +00:00
James Lee f33d7cc670 revamp java payloads and make shells work with tomcat_mgr_deploy. tested java_trusted_chain and java_tester to verify that this doesn't break other java payload usage. see #3009 and #2973, meterpreter doesn't work yet, so not marking resolved.
git-svn-id: file:///home/svn/framework3/trunk@10781 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-22 10:19:51 +00:00
Joshua Drake c6f1fa716d add a java target, fixes #2973
git-svn-id: file:///home/svn/framework3/trunk@10755 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 22:36:59 +00:00
Joshua Drake 771ea5862c fix typo
git-svn-id: file:///home/svn/framework3/trunk@10754 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 22:24:33 +00:00
Joshua Drake 1935f2007f fix exe generation for auto-targetting
git-svn-id: file:///home/svn/framework3/trunk@10753 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 22:21:19 +00:00
Joshua Drake 042e71c357 add ports/refs for ZDI-10-214
git-svn-id: file:///home/svn/framework3/trunk@10747 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-19 14:28:52 +00:00
Joshua Drake b49e81300a fix auto-target exe generation
git-svn-id: file:///home/svn/framework3/trunk@10688 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-14 21:26:05 +00:00
Joshua Drake ae04e34cf7 fix some non-full-namespace includes
git-svn-id: file:///home/svn/framework3/trunk@10617 4d416f70-5f16-0410-b530-b9f4589650da
2010-10-09 06:55:52 +00:00
Joshua Drake 279c604015 missed a couple exe generater includes
git-svn-id: file:///home/svn/framework3/trunk@10504 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-28 16:19:50 +00:00
James Lee 8c1f0713db regenerate the payload so we get the correct *lhost*
git-svn-id: file:///home/svn/framework3/trunk@10490 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-27 00:09:17 +00:00
James Lee 4fbb0653a1 regenerate the payload so we get the correct rhost
git-svn-id: file:///home/svn/framework3/trunk@10488 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-26 23:55:03 +00:00
Joshua Drake bd1eeb3722 rework to_jsp_war a bit, fix uses, default msfencode -t war to x86/win32
git-svn-id: file:///home/svn/framework3/trunk@10397 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-20 15:59:46 +00:00
Joshua Drake 4590844871 tons of indentation fixes, some other style tweaks
git-svn-id: file:///home/svn/framework3/trunk@10394 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-20 08:06:27 +00:00
Joshua Drake 19db412383 convert remaining EXE generation to use the mixin, fixes #2017
git-svn-id: file:///home/svn/framework3/trunk@10389 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-20 04:38:13 +00:00
James Lee a9a312fa66 typo
git-svn-id: file:///home/svn/framework3/trunk@10257 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-08 15:23:04 +00:00
James Lee 85126af521 add an exploit module for cve-2010-0094, thanks Matthias Kaiser.
git-svn-id: file:///home/svn/framework3/trunk@10255 4d416f70-5f16-0410-b530-b9f4589650da
2010-09-08 08:20:55 +00:00
Joshua Drake 330281eadd see #684, adds checksum support, updates modules to use it, fixes some wfs_delay/WfsDelay issues
git-svn-id: file:///home/svn/framework3/trunk@10150 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-25 20:55:37 +00:00
Joshua Drake aac956db50 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10128 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-24 18:22:48 +00:00
James Lee 2e13a330fa typo'd Matthias' name. i suck
git-svn-id: file:///home/svn/framework3/trunk@10113 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-23 18:49:35 +00:00
James Lee 90e89622c6 make it a little easier to distinguish these two from their output
git-svn-id: file:///home/svn/framework3/trunk@10096 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-21 07:53:25 +00:00
James Lee 7381ab8b6d duh, dont actually need this
git-svn-id: file:///home/svn/framework3/trunk@10093 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-21 07:19:49 +00:00
James Lee 6b08dfed61 Add exploit module for cve-2010-08040. This is an awesome bug and my description field doesn't do it justice
git-svn-id: file:///home/svn/framework3/trunk@10092 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-21 06:38:29 +00:00
James Lee 56396a6d8b add java support to browser_autopwn
git-svn-id: file:///home/svn/framework3/trunk@10089 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-20 20:49:33 +00:00
Joshua Drake 2545410bc7 make exe template names more consistent
git-svn-id: file:///home/svn/framework3/trunk@10065 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-19 21:08:51 +00:00
Joshua Drake dc3e099f5b remove custom function in favor of new NO RECV flags to smb client methods
git-svn-id: file:///home/svn/framework3/trunk@10040 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-18 17:24:46 +00:00
James Lee 73081e319f allow multi/handler to work with java
git-svn-id: file:///home/svn/framework3/trunk@10020 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-16 16:34:55 +00:00
Joshua Drake d540818f01 split http exploit mixin into http/server and http/client
git-svn-id: file:///home/svn/framework3/trunk@9971 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-07 06:59:16 +00:00
Joshua Drake 2f384cde82 add alias for calling Msf::Exploit regenerate_payload explicitly -- fixes #2312
git-svn-id: file:///home/svn/framework3/trunk@9950 4d416f70-5f16-0410-b530-b9f4589650da
2010-08-03 15:14:34 +00:00
James Lee e1ed341136 remove debug prints
git-svn-id: file:///home/svn/framework3/trunk@9938 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-27 21:05:41 +00:00
Joshua Drake f6033b9bd6 change some print_status to print_error, rename a few msft modules using msb convention
git-svn-id: file:///home/svn/framework3/trunk@9929 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 21:37:54 +00:00
Joshua Drake 2482a83526 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9927 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-25 19:14:00 +00:00
Joshua Drake 84e3a95d2b yield the session faster by not waiting for a response
git-svn-id: file:///home/svn/framework3/trunk@9911 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 23:40:34 +00:00
Steve Tornio 018af7f690 add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9906 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 21:09:54 +00:00
Joshua Drake 719ce5d551 use ntlm explicitly, fixes #2158
git-svn-id: file:///home/svn/framework3/trunk@9900 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-21 06:04:20 +00:00
James Lee 08d705c1db add java meterpreter and update java_calendar_deserialize to be able to use it, see #406
git-svn-id: file:///home/svn/framework3/trunk@9874 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-20 00:53:24 +00:00
James Lee 9891ea5374 Typo which caused this exploit never to get run in browser_autopwn
git-svn-id: file:///home/svn/framework3/trunk@9802 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-13 09:03:56 +00:00
Joshua Drake 16ff17c9d1 add more http fingerprints -- thx mc
git-svn-id: file:///home/svn/framework3/trunk@9797 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-12 23:25:31 +00:00
James Lee 9f37d46f7b minimize autopwn settings
git-svn-id: file:///home/svn/framework3/trunk@9784 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-11 23:21:04 +00:00
James Lee 28e40bdc9f add java_calendar_deserialize to browser_autopwn
git-svn-id: file:///home/svn/framework3/trunk@9783 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-11 23:16:51 +00:00
Joshua Drake 663b863b6d http fingerprint checking update
git-svn-id: file:///home/svn/framework3/trunk@9719 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-07 17:38:59 +00:00
Joshua Drake a3d901a6b9 various minor fixes, some added fingerprinting
git-svn-id: file:///home/svn/framework3/trunk@9671 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 06:21:31 +00:00
Joshua Drake 7d945ed9dc add lots of disclosure dates from OSVDB
git-svn-id: file:///home/svn/framework3/trunk@9669 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 03:13:45 +00:00
Joshua Drake 9984b662e0 switch some URL references to US-CERT-VU type
git-svn-id: file:///home/svn/framework3/trunk@9666 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-03 01:09:32 +00:00
Joshua Drake 0882838491 ensure binary mode when opening files, whitespace fixes
git-svn-id: file:///home/svn/framework3/trunk@9653 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 23:33:07 +00:00
Joshua Drake 93b09648c7 add additional CVE reference, cleanup references
git-svn-id: file:///home/svn/framework3/trunk@9642 4d416f70-5f16-0410-b530-b9f4589650da
2010-07-01 19:42:11 +00:00
Joshua Drake 12fbdcd878 add http_fingerprint calls to modules that use various headers
git-svn-id: file:///home/svn/framework3/trunk@9627 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-25 20:53:12 +00:00
Joshua Drake 48994d234a oops, remove java from platform list
git-svn-id: file:///home/svn/framework3/trunk@9609 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-24 16:38:24 +00:00
Joshua Drake 099b90b0d6 another update for jboss stuff, thanks Patrick!
git-svn-id: file:///home/svn/framework3/trunk@9596 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-23 22:25:03 +00:00
Joshua Drake 58cbf5d6ad oops, fixed app_base mistake
git-svn-id: file:///home/svn/framework3/trunk@9586 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 23:10:30 +00:00
Tod Beardsley 9d46383040 Fixes #2134. Subs select for sleep in exploit modules.
git-svn-id: file:///home/svn/framework3/trunk@9583 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 19:11:05 +00:00
Mario Ceballos 9780efabdd missed Version
git-svn-id: file:///home/svn/framework3/trunk@9578 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:24:52 +00:00
Mario Ceballos ccece11b9b changed from the orignal method, thanks patrick.
git-svn-id: file:///home/svn/framework3/trunk@9577 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-22 01:08:02 +00:00
Joshua Drake 752905a777 style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@9571 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:53:52 +00:00
Joshua Drake 19742afb38 use pack instead of Base64
git-svn-id: file:///home/svn/framework3/trunk@9569 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:45:26 +00:00
Joshua Drake 4ceb936533 some jboss updates, much thanks to Patrick Hof
git-svn-id: file:///home/svn/framework3/trunk@9568 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-21 16:26:14 +00:00
Joshua Drake 79190edba3 throw an error when ExitOnSession is false with no job_id
git-svn-id: file:///home/svn/framework3/trunk@9526 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 17:25:14 +00:00
Joshua Drake fa505a4069 various fixes, mostly consistency changes to disclosure dates
git-svn-id: file:///home/svn/framework3/trunk@9525 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-15 07:18:08 +00:00
Joshua Drake 698da3bdea add CVE for cognos express
git-svn-id: file:///home/svn/framework3/trunk@9502 4d416f70-5f16-0410-b530-b9f4589650da
2010-06-12 09:37:21 +00:00
Steve Tornio 1192e0860e add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9294 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-12 19:30:54 +00:00
Joshua Drake a964d403be merge patch from scriptjunkie, fixes #1875
git-svn-id: file:///home/svn/framework3/trunk@9286 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 22:28:18 +00:00
Joshua Drake 711e08b5e9 make sure to use correct verbs, thanks mc!
git-svn-id: file:///home/svn/framework3/trunk@9285 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 16:20:46 +00:00
Joshua Drake 7f758d5a02 add VERB option to enable exploiting cve-2010-0738
git-svn-id: file:///home/svn/framework3/trunk@9282 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-11 09:14:36 +00:00
Joshua Drake 128e0515ef stop perpetuating the ambiguity!
git-svn-id: file:///home/svn/framework3/trunk@9262 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 17:45:00 +00:00
Joshua Drake d7c99b107c RE-fix and add svnkeywords, MC!!!
git-svn-id: file:///home/svn/framework3/trunk@9261 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 17:30:05 +00:00
Mario Ceballos d33dc27e26 updated.. thanks jmg.
git-svn-id: file:///home/svn/framework3/trunk@9256 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-09 12:54:16 +00:00
Steve Tornio a47f7dcb2e add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@9251 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-08 16:46:49 +00:00
Joshua Drake d296e0cdc3 minor cleanups
git-svn-id: file:///home/svn/framework3/trunk@9245 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-07 22:28:21 +00:00
Mario Ceballos 579d35035b added exploit module for cve-2006-5750
git-svn-id: file:///home/svn/framework3/trunk@9244 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-07 22:21:44 +00:00
James Lee e70dabf3e3 warn and remove commas from CERTCN to prevent a crash bug in Rjb's keytool, fixes 1543
git-svn-id: file:///home/svn/framework3/trunk@9241 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-07 18:19:50 +00:00
Joshua Drake 0e72894e58 more cleanups
git-svn-id: file:///home/svn/framework3/trunk@9212 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-03 17:13:09 +00:00
Joshua Drake 61402c4b55 add to description
git-svn-id: file:///home/svn/framework3/trunk@9202 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-02 21:04:56 +00:00
Joshua Drake ff46c5d867 add exploit module for cve-2010-0361 on windows
git-svn-id: file:///home/svn/framework3/trunk@9201 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-02 20:52:14 +00:00
HD Moore 42da9e899a Improvements to the cleanup process, close sockets properly for exploits and auxiliary
git-svn-id: file:///home/svn/framework3/trunk@9187 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-01 16:26:24 +00:00
Joshua Drake 2e2142d345 add Maple exploit from scriptjunkie
git-svn-id: file:///home/svn/framework3/trunk@9183 4d416f70-5f16-0410-b530-b9f4589650da
2010-05-01 02:05:56 +00:00
Joshua Drake 0ea6eca4bc big module whitespace/formatting cleanup pass
git-svn-id: file:///home/svn/framework3/trunk@9179 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 08:40:19 +00:00
Joshua Drake 54725099d5 oops it wasnt broken after all!
git-svn-id: file:///home/svn/framework3/trunk@9178 4d416f70-5f16-0410-b530-b9f4589650da
2010-04-30 06:38:48 +00:00