jvazquez-r7
b5e5d390ac
Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::NtCreateAndx
2015-03-02 16:55:36 -06:00
jvazquez-r7
584e5f7d8b
Add specs for Exploit::Remote::SMB::Server::Share::Command::Negotiate
2015-03-02 16:29:33 -06:00
Brent Cook
4b54517b95
Land #4864 @wvu-r7 changes reverse_python to be non-interactive
...
This avoids sourcing the shell RC scripts, writing history, etc.
2015-03-02 16:21:49 -06:00
jvazquez-r7
50f5baa7c6
Add specs for Msf::Exploit::Remote::SMB::Server::Share::Command::Close
2015-03-02 16:00:02 -06:00
William Vu
a648e74c4b
Remove unnecessary semicolon
2015-03-02 15:36:45 -06:00
William Vu
80169de4d0
Remove -i from shell in reverse_python
2015-03-02 15:29:50 -06:00
William Vu
ecd7ae9c3b
Land #4857 , symantec_web_gateway_restore module
2015-03-02 15:00:10 -06:00
sinn3r
ad28f9767f
Use include
2015-03-02 14:41:25 -06:00
jvazquez-r7
b0bc69b832
Add @todo comment
2015-03-02 14:25:56 -06:00
jvazquez-r7
d57e220f00
Delete unnecessary case on smb_cmd_trans_query_path_info_basic
2015-03-02 14:19:20 -06:00
jvazquez-r7
2004aea7b7
Add helpers for path handling on TRANS2 requests
2015-03-02 14:15:25 -06:00
sinn3r
cb140434f9
Update
2015-03-02 12:59:21 -06:00
jvazquez-r7
8acde11aaf
Use file_contents instead of exe_contents
2015-03-02 12:56:48 -06:00
jvazquez-r7
34bd6a4365
Add documentation for the Share mixin
2015-03-02 12:42:32 -06:00
jvazquez-r7
9a8e17508f
Add documentation for QUERY information levels
2015-03-02 12:00:34 -06:00
jvazquez-r7
750022806b
Add documentation for FIND information levels
2015-03-02 11:46:20 -06:00
sinn3r
5f3ed83922
Land #4836 , Solarwinds Core Orion Service SQL injection
2015-03-02 11:44:26 -06:00
jvazquez-r7
0d8632dae9
Add documentation for TRANSACTION2 subcommands
2015-03-02 11:19:34 -06:00
jvazquez-r7
6a5dae4549
Add documentation for SMB_COM_TRANSACTION2 handling
2015-03-02 11:12:57 -06:00
jvazquez-r7
3923589286
Add documentation for SMB_COM_SESSION_SETUP_ANDX handling
2015-03-02 11:06:41 -06:00
jvazquez-r7
e8dd9c1971
Add documentation for SMB_COM_READ_ANDX
2015-03-02 10:59:07 -06:00
jvazquez-r7
1ad3f91c50
Add documentation for SMB_COM_NT_CREATE_ANDX handling
2015-03-02 10:52:30 -06:00
jvazquez-r7
19061121b3
Add documentation for SMB_COM_NEGOTIATE handling
2015-03-02 10:45:43 -06:00
jvazquez-r7
3e8bbb6c9e
Add documentation for SMB_COM_CLOSE handling
2015-03-02 10:36:13 -06:00
Brandon Turner
6b3de2850b
Merge remote-tracking branch 'origin/release'
2015-03-01 00:50:34 -06:00
Brandon Turner
c86b56684a
Fix bug preventing updates in pro
...
The RPC code previously tested return values to see if an error key was
equal to true. In 251c284458
, this was
changed to check if the error key was truthy.
The pro updater returns an error key with a string describing an error
(or an empty string for no error). Ruby strings evaluate as truthy
which caused the new behavior to throw an error. This prevented
checking for and applying updates.
This reverts to the original behavior of checking for true explicitly
instead of checking for a truthy value.
MSP-12235
2015-02-28 23:46:57 -06:00
William Vu
ef330b970b
Land #4860 , @OJ's Seagate 0day hotness
2015-02-28 21:55:54 -06:00
OJ
905a539a00
Add exploit for Seagate Business NAS devices
...
This module is an exploit for a pre-authenticated remote code execution
vulnerability in Seagate Business NAS products.
2015-03-01 13:25:28 +10:00
Brandon Perry
f8e3874203
add nil check
2015-02-28 20:43:19 -06:00
sinn3r
4a1fbbdc3b
Use datastore to find payload name
2015-02-28 19:56:32 -06:00
jvazquez-r7
227cf4500d
define constants for tree connect access rights
2015-02-28 18:38:45 -06:00
jvazquez-r7
e322aca1ba
Merge constants for reponses wordcounts
2015-02-28 18:24:47 -06:00
jvazquez-r7
eb3aedf4a7
Define constants for WordCount in responses
2015-02-28 18:15:14 -06:00
Matthew Hall
402fa127e6
Merge pull request #3 from jvazquez-r7/review_3074_clean_server
...
Land the merge. Code looks good to me! :-) thanks @jvazquez-r7
2015-02-28 22:10:17 +00:00
jvazquez-r7
7d8b78c2e8
Merge session_setup refactoring
2015-02-28 15:14:33 -06:00
sinn3r
5f8c14c958
Fix check for TrueClass, plus other small changes
2015-02-28 14:11:15 -06:00
sinn3r
6f4259f2de
Revert #4859 , temporary solution for unbreaking client
...
This reverts commit 7ab86be72a
, reversing
changes made to 49ae173057
.
2015-02-28 14:07:26 -06:00
sinn3r
1b699b0ddc
Resolve merge conflict
...
Conflicts:
lib/msf/core/rpc/v10/client.rb
2015-02-28 14:07:01 -06:00
jvazquez-r7
eb7ac02d1a
Normalize handlers names
2015-02-28 12:14:58 -06:00
jvazquez-r7
1d602d38c9
Refactor SessionSetupAndx handler
2015-02-28 12:10:48 -06:00
William Vu
b27c9b9efc
Land #4838 , reverse_http{,s} listening service fix
2015-02-27 21:02:58 -06:00
Tod Beardsley
7ab86be72a
Land #4859 , reverting #4823 .
...
PR #4823 caused some update issues. I think #4823's heart was in the
right place, and I imagine it was only one or two lines that caused the
failures.
2015-02-27 17:55:29 -06:00
sinn3r
ac81318e7a
Revert #4823 , changes for ruby style guide
...
This reverts commit 885469ca52
, reversing
changes made to fd73445d9b
.
Please see: #4823 for why.
2015-02-27 17:28:00 -06:00
sinn3r
bdc9f684c2
Check True in error response for mspc
...
Without this check, it causes Pro to behave different (malfunction)
2015-02-27 17:21:23 -06:00
sinn3r
ef9196ba6c
Correct comment
2015-02-27 13:27:49 -06:00
sinn3r
7b6c39058a
Correct target name
2015-02-27 13:24:57 -06:00
sinn3r
90aff51676
Add CVE-2014-7285, Symantec Web Gateway restore.php Command Injection
2015-02-27 12:31:29 -06:00
jvazquez-r7
544f88620d
Merge more mixin refactor
2015-02-27 01:55:14 -06:00
jvazquez-r7
e5e13108ed
Refactor close handling
2015-02-26 23:50:10 -06:00
jvazquez-r7
5418cdad11
Refactor negotiate handling
2015-02-26 23:49:07 -06:00