Joshua Drake
7b34f7b0f2
add exploit module for cve-2009-4324
...
git-svn-id: file:///home/svn/framework3/trunk@7881 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 20:15:08 +00:00
James Lee
2570fcee15
get rid of some more ^Ms
...
git-svn-id: file:///home/svn/framework3/trunk@7880 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 18:47:29 +00:00
James Lee
48c3709a25
correct maxver
...
git-svn-id: file:///home/svn/framework3/trunk@7879 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 18:46:53 +00:00
James Lee
196ee82179
bye-bye crlf
...
git-svn-id: file:///home/svn/framework3/trunk@7878 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 18:13:27 +00:00
HD Moore
f76a9a43e6
Switch compat payloads to normal vs ranked
...
git-svn-id: file:///home/svn/framework3/trunk@7877 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 13:14:01 +00:00
James Lee
f1a5103b32
allow the browser_autopwn mixin access to exploit modules' Rank constants. see 628
...
git-svn-id: file:///home/svn/framework3/trunk@7876 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 07:21:17 +00:00
Joshua Drake
f3a0bbc6d6
rename to make a bit more sense
...
git-svn-id: file:///home/svn/framework3/trunk@7875 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 06:05:30 +00:00
Joshua Drake
2c88e2eb62
rename to make a bit more sense
...
git-svn-id: file:///home/svn/framework3/trunk@7874 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 05:41:29 +00:00
Joshua Drake
d81c581f21
oops, remove hard coded payload
...
git-svn-id: file:///home/svn/framework3/trunk@7873 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 05:32:52 +00:00
HD Moore
8b6f452b11
Merges in mubix's VNC script (uses pivoting to keep all comms over the main session). Adds the -f parameter to the migrate command to indicate that a new process should be created always
...
git-svn-id: file:///home/svn/framework3/trunk@7872 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 05:10:33 +00:00
Joshua Drake
4c1034ad7f
add exploit module for cve-2006-2502
...
git-svn-id: file:///home/svn/framework3/trunk@7871 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 04:41:31 +00:00
Joshua Drake
b1c9b7e927
a few more svn:keywords fixes
...
git-svn-id: file:///home/svn/framework3/trunk@7870 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 02:11:42 +00:00
Joshua Drake
d5eb4d8217
add svn:keywords property
...
git-svn-id: file:///home/svn/framework3/trunk@7869 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 02:08:43 +00:00
Joshua Drake
8a95baa810
add exploit module for cve-2008-1697 from bannedit/muts
...
git-svn-id: file:///home/svn/framework3/trunk@7868 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 00:32:42 +00:00
Joshua Drake
1813a0fb9a
updated technique
...
git-svn-id: file:///home/svn/framework3/trunk@7867 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 00:32:07 +00:00
James Lee
b6c497467e
add a message about requiring libmysqlclient-dev, fixes 535
...
git-svn-id: file:///home/svn/framework3/trunk@7866 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:40:21 +00:00
James Lee
0cf566c0b9
fixes 688. better return address for greater reliability, works against FF-1.0.4 and Moz-1.7.1 on XPSP3 and 2kAS-SP0
...
git-svn-id: file:///home/svn/framework3/trunk@7865 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:27:28 +00:00
Mario Ceballos
c799df8559
target is no good. offsets change on different installs.
...
git-svn-id: file:///home/svn/framework3/trunk@7864 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:07:21 +00:00
Joshua Drake
88b9ee18af
clarified some version info
...
git-svn-id: file:///home/svn/framework3/trunk@7863 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:01:34 +00:00
Joshua Drake
c831cda3f5
milworm/exploitdb 9277 only covers m3u and mpf, not pls
...
git-svn-id: file:///home/svn/framework3/trunk@7862 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:59:32 +00:00
Mike Smith
f9ffc8b8bc
Add db_workspace command & other db refactoring.
...
* Added "workspaces" table and associated ActiveRecord class.
* Moved ActiveRecord models from db_objects.rb into separate files.
* Do the DB migration check every time you connect (was previously done
during db_create).
* Use :dependent => :destroy associations so that we don't have to
manually delete the dependent objects.
git-svn-id: file:///home/svn/framework3/trunk@7861 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:52:34 +00:00
Joshua Drake
8317b69aca
corrected disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@7860 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:44:37 +00:00
Joshua Drake
2524840348
renamed, new targets, now using seh...
...
git-svn-id: file:///home/svn/framework3/trunk@7859 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:40:56 +00:00
Steve Tornio
1dc2c41837
added OSVDB and exploit-db refs
...
git-svn-id: file:///home/svn/framework3/trunk@7858 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:29:10 +00:00
HD Moore
4311c20ee1
Warn the user when nessusv2 is specified (only v1 supported). See #690
...
git-svn-id: file:///home/svn/framework3/trunk@7857 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:00:54 +00:00
Joshua Drake
4d645796af
add exploit module from dookie
...
git-svn-id: file:///home/svn/framework3/trunk@7856 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 21:27:43 +00:00
James Lee
a03e3bf823
adds support for regular shell sessions when running commands with 'sessions -c'. Commands are run sequentially, so will take forever on large numbers of sessions.
...
git-svn-id: file:///home/svn/framework3/trunk@7855 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 21:17:49 +00:00
HD Moore
837c70715d
Reference updates from Steve Tornio
...
git-svn-id: file:///home/svn/framework3/trunk@7854 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 20:09:46 +00:00
Joshua Drake
ef0d86720a
updated description, added xp sp2+sp3 target, see #687
...
git-svn-id: file:///home/svn/framework3/trunk@7853 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 19:04:40 +00:00
HD Moore
0efbe3baf9
Remove the debug print
...
git-svn-id: file:///home/svn/framework3/trunk@7852 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 18:56:19 +00:00
HD Moore
97757c37a0
Adds an exploit module for the zabbix agent command execution flaw (no cve/bid/osvdb)
...
git-svn-id: file:///home/svn/framework3/trunk@7851 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 18:24:24 +00:00
Joshua Drake
255724d640
compile java applet with 1.3, Fixes #685
...
git-svn-id: file:///home/svn/framework3/trunk@7850 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 17:26:19 +00:00
HD Moore
e02f62e3aa
Switch to a return address that also works on SP0
...
git-svn-id: file:///home/svn/framework3/trunk@7849 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 17:14:08 +00:00
HD Moore
7a5267015e
Adds the ability to obtain a VNC desktop through an existing meterpreter session
...
git-svn-id: file:///home/svn/framework3/trunk@7848 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 14:50:26 +00:00
et
20222a44ea
Fix. Thats next step
...
git-svn-id: file:///home/svn/framework3/trunk@7847 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:58:57 +00:00
et
d6ee7c58ce
New wmap moule for generic checks
...
git-svn-id: file:///home/svn/framework3/trunk@7846 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:49:44 +00:00
HD Moore
8c7c62bcbc
Major update to the directory list based on the thousands of idiots scanning metasploit.com. Thanks! :)
...
git-svn-id: file:///home/svn/framework3/trunk@7845 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 04:35:31 +00:00
HD Moore
bce6355df1
Make sure we use a real module class instance when ranking
...
git-svn-id: file:///home/svn/framework3/trunk@7844 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 23:41:25 +00:00
HD Moore
e2cc45e4d4
Use the not-so-explicit platform
...
git-svn-id: file:///home/svn/framework3/trunk@7843 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 19:46:44 +00:00
HD Moore
89da53d570
Updates to encode_shellcode_stub
...
git-svn-id: file:///home/svn/framework3/trunk@7842 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 19:43:17 +00:00
HD Moore
40fb409343
Adds encode_shellcode_stub() to the exploit class, this allows arbitrary shellecode bits to be easily encoded
...
git-svn-id: file:///home/svn/framework3/trunk@7841 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 19:31:17 +00:00
HD Moore
7e4d03be86
This adds support for the old exe format to msfencode using -t exe-small and allows encoder modules to change preferences based on the platform, which fully solves #430 .
...
git-svn-id: file:///home/svn/framework3/trunk@7840 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 19:03:35 +00:00
HD Moore
c287573213
A few more wmap cleanups
...
git-svn-id: file:///home/svn/framework3/trunk@7839 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 06:56:01 +00:00
HD Moore
a1f71fa994
Fixes #683 . This triggers when running on ruby 1.9 and is probably one of many like this and one of the reasons this interface is not maintained. However, since you wen to the effort of reporting it, the least we can do is fix it ;)
...
git-svn-id: file:///home/svn/framework3/trunk@7838 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 05:30:34 +00:00
HD Moore
1029ecd7f8
Cleanup wmap, add the missing database tables back, rename to have a wmap_prefix
...
git-svn-id: file:///home/svn/framework3/trunk@7837 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 05:24:48 +00:00
HD Moore
fb7a522bb3
Fixes #682 by correcting the BID (thanks Kurt!)
...
git-svn-id: file:///home/svn/framework3/trunk@7836 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 04:02:23 +00:00
HD Moore
3b52cd2e0d
Adds a DoS module for the recent NTP (server to server) issue from Tod Beardsley
...
git-svn-id: file:///home/svn/framework3/trunk@7835 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 02:56:20 +00:00
Joshua Drake
f1a975a14e
fix typo, remove automatic target
...
git-svn-id: file:///home/svn/framework3/trunk@7834 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-12 21:44:04 +00:00
Mario Ceballos
ea0a1eea7d
add ranking...
...
git-svn-id: file:///home/svn/framework3/trunk@7833 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-12 20:14:24 +00:00
Mario Ceballos
002b043d4c
added exploit module hp_nnm_snmp.rb
...
git-svn-id: file:///home/svn/framework3/trunk@7832 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-12 20:06:14 +00:00