Mario Ceballos
|
b12d03b7c4
|
add exploit module coldfusion_fckeditor.rb
git-svn-id: file:///home/svn/framework3/trunk@10865 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-11-02 20:13:36 +00:00 |
Joshua Drake
|
b572414eac
|
add exploit for cve-2010-3654
git-svn-id: file:///home/svn/framework3/trunk@10857 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-11-01 22:34:13 +00:00 |
Joshua Drake
|
21f16f63a1
|
style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10855 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-11-01 21:45:49 +00:00 |
Tod Beardsley
|
9c6f771252
|
Suppress the error when your @result is nil in smtp_enum.rb
git-svn-id: file:///home/svn/framework3/trunk@10853 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-11-01 13:56:42 +00:00 |
Tod Beardsley
|
730ec09464
|
Allow for blank FTP usernames. Just not nil ones.
git-svn-id: file:///home/svn/framework3/trunk@10834 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-27 20:12:51 +00:00 |
Joshua Drake
|
1f235a8c9b
|
remove 64-bit targets since we dont have an x86_64 linux exe generator
git-svn-id: file:///home/svn/framework3/trunk@10833 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-27 17:21:54 +00:00 |
Steve Tornio
|
9f5fca12f7
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@10828 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-26 15:28:04 +00:00 |
Joshua Drake
|
e78aa83021
|
style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10821 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-25 20:58:49 +00:00 |
Joshua Drake
|
f909b360ba
|
note tested on 6u11
git-svn-id: file:///home/svn/framework3/trunk@10820 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-25 20:22:08 +00:00 |
Joshua Drake
|
3fffd15549
|
add exploit for cve-2010-3552 (w/dep bypass)
git-svn-id: file:///home/svn/framework3/trunk@10819 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-25 20:21:41 +00:00 |
Joshua Drake
|
672fc87055
|
fixed typo, thx rmkml
git-svn-id: file:///home/svn/framework3/trunk@10803 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-23 23:35:44 +00:00 |
HD Moore
|
cf500fb294
|
Subtract the stupid
git-svn-id: file:///home/svn/framework3/trunk@10792 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-23 07:09:59 +00:00 |
Joshua Drake
|
be841a4810
|
check for failed serverinfo result
git-svn-id: file:///home/svn/framework3/trunk@10788 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 21:32:12 +00:00 |
James Lee
|
3b2c43fac4
|
get rid of the redundant second java target
git-svn-id: file:///home/svn/framework3/trunk@10785 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 20:07:18 +00:00 |
Steve Tornio
|
0251c446f1
|
add cve, osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@10784 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 12:21:30 +00:00 |
Steve Tornio
|
ddf8294beb
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@10783 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 12:09:10 +00:00 |
James Lee
|
56839ccf36
|
stupid debug prints
git-svn-id: file:///home/svn/framework3/trunk@10782 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 10:24:28 +00:00 |
James Lee
|
f33d7cc670
|
revamp java payloads and make shells work with tomcat_mgr_deploy. tested java_trusted_chain and java_tester to verify that this doesn't break other java payload usage. see #3009 and #2973, meterpreter doesn't work yet, so not marking resolved.
git-svn-id: file:///home/svn/framework3/trunk@10781 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 10:19:51 +00:00 |
Joshua Drake
|
7a9fe2c4d7
|
add exploit module for cve-2010-3585
git-svn-id: file:///home/svn/framework3/trunk@10780 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 06:16:31 +00:00 |
Joshua Drake
|
6bd75bb2d5
|
add shockwave exploit from abysssec/rel1k
git-svn-id: file:///home/svn/framework3/trunk@10779 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-22 03:15:22 +00:00 |
Steve Tornio
|
27d2761ec0
|
add osvdb ref
git-svn-id: file:///home/svn/framework3/trunk@10775 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-21 11:41:18 +00:00 |
Tod Beardsley
|
6f56086df9
|
See #2888. Editing the title and description to reflect the multitude of Barracuda products affected by this module. Only three are actually listed specifically, but users can always refer to the OSVDB listing to get the complete list.
git-svn-id: file:///home/svn/framework3/trunk@10772 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-21 01:18:38 +00:00 |
Joshua Drake
|
1f1cd6af9f
|
commit a couple fixes from peter
git-svn-id: file:///home/svn/framework3/trunk@10766 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-20 15:15:50 +00:00 |
Mario Ceballos
|
d384863a83
|
exploit module fatplayer_wav.rb from dookie.
git-svn-id: file:///home/svn/framework3/trunk@10764 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-20 11:53:12 +00:00 |
Joshua Drake
|
04858c69fc
|
style compliance fixes
git-svn-id: file:///home/svn/framework3/trunk@10758 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 22:54:19 +00:00 |
Joshua Drake
|
c6f1fa716d
|
add a java target, fixes #2973
git-svn-id: file:///home/svn/framework3/trunk@10755 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 22:36:59 +00:00 |
Joshua Drake
|
771ea5862c
|
fix typo
git-svn-id: file:///home/svn/framework3/trunk@10754 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 22:24:33 +00:00 |
Joshua Drake
|
1935f2007f
|
fix exe generation for auto-targetting
git-svn-id: file:///home/svn/framework3/trunk@10753 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 22:21:19 +00:00 |
Joshua Drake
|
7c1d8c7d05
|
fix false negatives, slightly reworked, fixes #2888
git-svn-id: file:///home/svn/framework3/trunk@10751 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 21:55:19 +00:00 |
Joshua Drake
|
20e2742596
|
fix indent
git-svn-id: file:///home/svn/framework3/trunk@10750 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 15:52:33 +00:00 |
Joshua Drake
|
042e71c357
|
add ports/refs for ZDI-10-214
git-svn-id: file:///home/svn/framework3/trunk@10747 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 14:28:52 +00:00 |
Joshua Drake
|
933eb3f6e6
|
switch to cr/lf vs just lf, fixes #2428
git-svn-id: file:///home/svn/framework3/trunk@10741 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-19 00:47:06 +00:00 |
Mario Ceballos
|
0411111dfd
|
couple of modules from Luigi Auriemma's DATAC RealWin advisory
git-svn-id: file:///home/svn/framework3/trunk@10734 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-18 21:20:02 +00:00 |
Joshua Drake
|
2d6b995623
|
rename/clarify PrintfUtil encoder, fixes #2308
git-svn-id: file:///home/svn/framework3/trunk@10729 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-18 15:41:13 +00:00 |
Joshua Drake
|
8a17803279
|
add exploit for ZDI-10-190
git-svn-id: file:///home/svn/framework3/trunk@10726 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-18 07:05:22 +00:00 |
Joshua Drake
|
f3f7b1dc83
|
fix typo
git-svn-id: file:///home/svn/framework3/trunk@10725 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-18 07:04:57 +00:00 |
HD Moore
|
f88033f0cc
|
Merge in R3L1K's Powershell enhancements and powerdump code (hashdump through powershell)
git-svn-id: file:///home/svn/framework3/trunk@10721 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-17 17:39:43 +00:00 |
HD Moore
|
79c8e18e6b
|
Add a wfs_delay for reverse_https. This fixes #2508 and fixes #1764. This should prevent the race condition that was the root cause of both issues.
git-svn-id: file:///home/svn/framework3/trunk@10716 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-17 02:33:47 +00:00 |
HD Moore
|
9902dcb9cc
|
Fixes #2661 by removing exitfunc as a parameter, since it needs to be ExitProcess
git-svn-id: file:///home/svn/framework3/trunk@10714 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-16 22:01:01 +00:00 |
HD Moore
|
5e1d181da5
|
Fixes #2132 by removing patchup version of vnc inject
git-svn-id: file:///home/svn/framework3/trunk@10708 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-16 18:10:10 +00:00 |
HD Moore
|
21bd23b9e6
|
Fixes #2786
git-svn-id: file:///home/svn/framework3/trunk@10707 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-16 17:53:27 +00:00 |
Steve Tornio
|
62622d51c2
|
add osvdb refs
git-svn-id: file:///home/svn/framework3/trunk@10703 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-16 12:17:51 +00:00 |
Tod Beardsley
|
97ebcd30a9
|
Fixes #788 by (finally!) committing Daniele's IPv6 link-local IPv6 scanner. Note that the timing can be a little touchy for this module (as well as for the IPv4 ARP scanner) but seems to be reliable enough on normal networks when scanning a /24.
Sorry for the delay!
git-svn-id: file:///home/svn/framework3/trunk@10700 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-15 22:48:18 +00:00 |
Tod Beardsley
|
48bcc580b8
|
Fixes #2623. This solves the original problem with the SNMP community scanner not respecting the ShowProgress toggle. The other fixes proposed in this bug really kind of seem to be quibbles over what's useful for verbosity and what's not. Please open another ticket for that with a unified diff of the proposed changes.
Thanks for the report!
git-svn-id: file:///home/svn/framework3/trunk@10697 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-15 20:11:51 +00:00 |
Tod Beardsley
|
865b711b5c
|
Fixes #2974. Adds an "Unknown" level to Exploit::CheckCode, fixes the URI check for exploit/unix/webapp/php_include (which was relying on Unknown).
git-svn-id: file:///home/svn/framework3/trunk@10694 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-15 12:24:17 +00:00 |
Mario Ceballos
|
1f8bca0f3f
|
added auxiliary module for cve-2010-2415
git-svn-id: file:///home/svn/framework3/trunk@10691 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-15 00:20:04 +00:00 |
Joshua Drake
|
b49e81300a
|
fix auto-target exe generation
git-svn-id: file:///home/svn/framework3/trunk@10688 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-14 21:26:05 +00:00 |
James Lee
|
1384ba6620
|
fix a typo. see #2578
git-svn-id: file:///home/svn/framework3/trunk@10680 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-14 18:24:56 +00:00 |
Joshua Drake
|
4ca2007d67
|
add ranking
git-svn-id: file:///home/svn/framework3/trunk@10665 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-13 03:03:24 +00:00 |
Joshua Drake
|
b11fbb67eb
|
oops, messed up whitespace
git-svn-id: file:///home/svn/framework3/trunk@10661 4d416f70-5f16-0410-b530-b9f4589650da
|
2010-10-12 18:40:13 +00:00 |