HD Moore
86b3409d47
Actually return
2011-12-13 20:01:13 -06:00
HD Moore
cb456337a0
Handle invalid http responses better, see #6113
2011-12-13 19:54:10 -06:00
Jenkins
3a20d53d88
Merge branch 'release/20111205000001'
2011-12-13 18:26:14 -06:00
sinn3r
48115a7f63
Merge branch 'master' of github.com:rapid7/metasploit-framework
2011-12-13 16:14:17 -06:00
sinn3r
fea4bfb85c
Repair dead milw0rm link to exploit-db
2011-12-13 16:13:53 -06:00
sinn3r
c1a4c4e584
Repair dead milw0rm link to exploit-db
2011-12-13 16:13:34 -06:00
sinn3r
acef9de711
Repair dead milw0rm link to exploit-db
2011-12-13 16:13:15 -06:00
sinn3r
e7ab48693c
Repair dead milw0rm link to exploit-db
2011-12-13 16:12:57 -06:00
sinn3r
94b736c76c
Repair dead milw0rm link to exploit-db
2011-12-13 16:12:38 -06:00
sinn3r
97b74101fb
Repair dead milw0rm link to exploit-db
2011-12-13 16:12:11 -06:00
sinn3r
7b2a1dc791
Repair dead milw0rm link to exploit-db
2011-12-13 16:11:33 -06:00
HD Moore
cb94b92e9c
What in nine hells was this.
2011-12-13 16:04:25 -06:00
HD Moore
f38a794b1c
Convert ` to '
2011-12-13 16:02:23 -06:00
sinn3r
a5189917da
Add CVE-2005-4832: Oracle Database Server DBMS_CDC_SUBSCRIBE SUBSCRIPTION_NAME SQL Injection (Feature #6094 )
2011-12-13 15:44:39 -06:00
sinn3r
d246bfa4da
Credit Luigi Auriemma for the original discovery/poc, not Celil
2011-12-13 15:20:26 -06:00
sinn3r
d87d8d5799
Add CVE-2011-4453 (PmWiki Remote code exeuction - Feature #6103 )
2011-12-13 11:45:24 -06:00
HD Moore
cfa128a2c8
Show the actual module name in the stack trace (instead of eval)
2011-12-13 09:47:37 -06:00
HD Moore
a9e4474eda
Add missing require, fix load error on invalid constant
2011-12-12 23:24:03 -06:00
sinn3r
cd0679ab5d
Increase timeout for cmd_exec()
2011-12-12 21:15:28 -06:00
sinn3r
6e8fdf1ce1
Apply patch #6081
2011-12-12 19:51:02 -06:00
Tod Beardsley
a8fad72fce
Merge branch 'msftidy_fixup'
...
Merging a local msftidy cleanup branch, adding a new optional msftidy
test to check for 1.8 compat and cleaning up some whitespace /
file.open()'s.
2011-12-12 17:55:21 -06:00
Tod Beardsley
f402b8598b
Whitespace and File.open binary mode cleanups.
...
Fixes some recent modules: dns_fuzzer, shodan_search,
avidphoneticindexer, and win_privs.
2011-12-12 17:31:28 -06:00
sinn3r
32c8301c19
Add feature #6082 (Traq 2.3 Auth bypass remote code execution)
2011-12-12 15:45:19 -06:00
sinn3r
bacdbb90d7
ugh, stack overflow != stack buffer overflow. Also, metadata format fix.
2011-12-12 15:23:32 -06:00
sinn3r
5af5137241
Add CoDeSys SCADA bof module ( #6083 )
2011-12-12 15:21:15 -06:00
Tod Beardsley
7de12fbf02
Adds a (slow) check for checking old rubies
...
This is mainly to avoid checking in modules that break Ruby 1.8.
Currently not terribly configurable, and since it's slow to
test ruby syntaces against different ruby versions, it's off
by default. Enable by setting an environment variable of
MSF_CHECK_OLD_RUBIES to any value.
2011-12-12 15:12:01 -06:00
sinn3r
5ba5bbf077
Apply feature #6074
2011-12-12 12:03:34 -06:00
sinn3r
4e95eb5d34
Update description (Feature #6080 )
2011-12-12 11:33:17 -06:00
Tod Beardsley
e4d59f9e62
Adding some comment docs to run_all_post.rc
...
Adding some explanitory text to mubix's run_all_post.rc example script.
2011-12-12 10:34:33 -06:00
Tod Beardsley
b4f58ef8fd
Trailing commas kill 1.8. dangit.
...
Fixed dns_fuzzer to knock that off.
2011-12-12 10:26:53 -06:00
Tod Beardsley
90535a84f7
Merge pull request #49 from NoVAHA/run_all_post
...
sample resource file to run a post module against all sessions
2011-12-12 08:26:27 -08:00
HD Moore
4736cb1cbe
Merge pull request #48 from swtornio/master
...
add osvdb ref
2011-12-11 20:37:43 -08:00
HD Moore
1ea3075a9b
Merge pull request #52 from rsmudge/armitage
...
Armitage 12.12.11
2011-12-11 20:37:31 -08:00
HD Moore
1c8e313c51
Merge pull request #50 from scriptjunkie/master
...
Remove XMLRPC. Thanks Matt!
2011-12-11 18:21:11 -08:00
Raphael Mudge
fbe54c8d80
Armitage 12.12.11 - this release fixes several bugs, polishes a few features, and adds
...
better troubleshooting information to aid users.
2011-12-11 20:20:01 -05:00
scriptjunkie
e34555dc22
Remove XML RPC option for msfgui.
2011-12-11 14:44:12 -06:00
HD Moore
1d244c4b27
Return the URL in the correct format from the model
2011-12-11 13:50:21 -06:00
HD Moore
17cc89ebad
Add IPv6 specific HTTP(S) handlers and payloads (simplifies
...
options/usage)
2011-12-11 13:26:48 -06:00
HD Moore
2c538fe9c0
Rework RangeWalker and some of the socket API to fix bugs and generally
...
handle ranges the right way
2011-12-10 20:10:10 -06:00
HD Moore
dee053cd71
Try multiple scopes for link-local addresses, if necessary. Fix a small
...
typo
2011-12-10 15:24:10 -06:00
Rob Fuller
b605f6affa
resource file to run a post module against all sessions
2011-12-10 15:30:46 -05:00
HD Moore
2d3064c1ec
Default the scope ID to 0, explicitly
2011-12-10 13:46:16 -06:00
HD Moore
1ae12e3a23
Remove the default target, since module doesn't fingerprint the service
...
pack, this can only end in tears.
2011-12-10 13:31:05 -06:00
HD Moore
8e01312d0f
Formatting
2011-12-10 13:27:47 -06:00
HD Moore
e33ca5a7ba
Small typo fix
2011-12-10 13:26:47 -06:00
HD Moore
e46745b761
Add support for link-local scopes
2011-12-10 13:24:58 -06:00
HD Moore
9c887eb457
Fix displayed host name for IPv6 targets
2011-12-10 13:24:58 -06:00
HD Moore
a9db05e53b
Fix regular expression
2011-12-10 13:24:58 -06:00
HD Moore
e3f121929c
Accept IPv6 addresses in the return if getaddress
2011-12-10 13:24:58 -06:00
HD Moore
1cc68d1ed5
Accept IPv6 addresses in getaddress() responses
2011-12-10 13:24:58 -06:00