15985e8b4f
Land #5559 , Adobe Flash Player ShaderJob Buffer Overflow
2015-06-19 10:38:05 -05:00
c95b3bb31d
Land #5479 , @wchen-r7 Updates kloxo_sqli to use the new cred API
2015-06-19 10:32:21 -05:00
c2f0973ed0
Report attempt_time
2015-06-19 10:31:50 -05:00
1c357e6b3c
Land #5478 , @wchen-r7 Updates ca_arcserve_rpc_authbypass to use the new cred API
2015-06-19 10:21:14 -05:00
0f17f622c3
Report last_attempted_at
2015-06-19 10:20:47 -05:00
357a3929a3
Trying to report more accurate status
2015-06-19 09:51:36 -05:00
b349549754
Land #5464 , @wchen-r7 Updates razer_synapse to use the new cred API
2015-06-19 09:42:44 -05:00
6d2b7e05ef
Use downcase
2015-06-19 09:35:20 -05:00
80f6e902b6
Land #5463 , @wchen-r7 updates smartermail to use the new cred API
2015-06-19 09:29:34 -05:00
0d7ef6f04e
Pass username as symbol
2015-06-19 09:29:00 -05:00
76cd9590a4
Fix author
2015-06-19 19:13:51 +10:00
fc35a53ac5
Pass options correctly
2015-06-19 00:14:58 -05:00
fc1417809e
Support hash format
2015-06-19 00:09:08 -05:00
7e91121afc
Change to Metasploit::Model::Login::Status::SUCCESSFUL
2015-06-18 23:44:45 -05:00
fb9ad663f7
Change to Metasploit::Model::Login::Status::SUCCESSFUL
2015-06-18 23:42:16 -05:00
9b5770c966
Change to Metasploit::Model::Login::Status::SUCCESSFUL
2015-06-18 23:40:51 -05:00
8656add0ad
Add uri parameter when removing http/s transports
2015-06-19 10:55:22 +10:00
308cad8c40
Fix #5565 , Fix os.js service pack detection
...
Fix #5565
2015-06-18 18:51:16 -05:00
0b55a889d3
persistence - better ruby/msf fu
2015-06-18 21:10:16 +01:00
15f0cf40d3
Land #5561 , @todb-r7's release fixes
2015-06-18 14:11:20 -05:00
afcb016814
Minor description fixups.
...
Edited modules/exploits/multi/browser/adobe_flash_pixel_bender_bof.rb
first landed in #5524 , adobe_flash_pixel_bender_bof in flash renderer .
Removed ASCII bullets since those rarely render correctly.
Edited modules/exploits/unix/webapp/wp_frontend_editor_file_upload.rb
first landed in #5252 , @espreto's module for WordPress Front-end Editor
File Upload Vuln . Fixed up some language usage, camel-cased "WordPress."
2015-06-18 13:25:39 -05:00
13a3f2781d
Change ExcellentRanking to GoodRanking for MS14-064
...
The ms14_064_ole_code_execution exploit's ranking is being lowered
to GoodRanking because of these two reasons:
1. The vulnerable component isn't in Internet Explorer. And BES can't
check it so the exploit still fires even if the target is patched.
2. Although rare, we've seen the exploit crashing IE, and since this
is a memory curruption type of bug, it should not be in Excellent
ranking anyway.
2015-06-18 13:07:44 -05:00
27a583853c
Fix one more line indentation
2015-06-18 12:40:30 -05:00
55f077fa9e
Fix indentation
2015-06-18 12:38:36 -05:00
de1542e589
Add module for CVE-2015-3090
2015-06-18 12:36:14 -05:00
7f27fd0cf2
adjust for user name size changes
2015-06-18 11:17:08 -05:00
ce9481d2b7
Inconstancy - If datastore['VERBOSE'] vs vprint
2015-06-18 09:27:01 +01:00
e549580ad2
Linux doesn't like the uppercase
2015-06-18 00:40:47 -05:00
5fa864b097
done with rspec
2015-06-17 16:23:39 -05:00
8ea09532c8
removed a debugging line
2015-06-17 13:13:00 -04:00
a6c7f93bbe
changed text to show support for RFB version 4.001
2015-06-17 13:09:03 -04:00
e30b0e0cda
forced client to version 3 for servers and added comments. This adds support for RFB version 4 servers. Tested on 004.001
2015-06-17 12:57:24 -04:00
772a5dd7df
Created array and added support for version 4
2015-06-17 12:31:51 -04:00
0f2897df3a
Land #5551 , Remove msfencode from the gemspec
2015-06-17 10:54:30 -05:00
a3debe1621
persistence - more options, more verbose
...
...and less bugs!
+ Able to define the EXE payload filename
+ Able to setup a handler job
+ Able to execute persistence payload after installing
+ Performs various checks (should be more stable now)
+ Will display various warnings if your doing something 'different'
+ Added various verbose messages during the process
2015-06-17 13:57:06 +01:00
b1f68556f9
More testcases
2015-06-17 02:52:59 -05:00
089579e354
This is how much rspec I have so far for browser_autopwnv2_spec.rb
2015-06-16 23:04:12 -05:00
dc07938668
Land #5550 , custom exe_filename for to_exe_vba
2015-06-16 19:10:49 -05:00
37546c7e18
to_exe_vbs - Allow for exe_filename to be defined
2015-06-17 01:13:33 +01:00
b40e9f6d46
util/exe - replace tabs with spaces
...
...formatting should be okay still
2015-06-17 01:10:18 +01:00
f2e2af1c42
Remove msfencode from the gemspec
2015-06-16 18:37:32 -05:00
f5b9be7814
Land #5468 , @wchen-r7's updates razorsql to use the new creds api
...
* Also fixes #5469
2015-06-16 17:51:18 -05:00
ef825fb4bf
Land #5530 , shell_to_meterpreter improvements
2015-06-16 14:29:15 -05:00
33139c4ecd
shell_to_meterpreter minor improvements
2015-06-16 20:42:47 +01:00
4fee6b291c
Land #5549 , OptEnum "accepted" capitalization
2015-06-16 14:26:04 -05:00
3410782fe9
Capitalized 'Accepted'
2015-06-16 19:42:32 +01:00
11bf416a86
Land #5548 , database.yml.example MSF-DEV ref
2015-06-16 11:12:39 -05:00
67065e104a
Update database.yml.example to ref MSF-DEV
...
We no longer rely on the Fedora Project's documentation for setting up a
PostgreSQL database. The comment doc here should reflect this change.
2015-06-16 11:05:03 -05:00
9dbdaf13ea
Add AutoVerifySessionTimeout Meterpreter advanced option
2015-06-17 00:20:59 +10:00
fcf6212d2f
Update telnet capture module to use the new creds API
2015-06-16 16:37:36 +05:00
wchen-r7
jvazquez-r7
aushack
OJ
g0tmi1k
William Vu
Tod Beardsley
Brent Cook
Th3R3p0
root