infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,747 Commits
7 Branches
556 Tags
421 MiB
Commit Graph

2174 Commits (cc0490161037584e69bbb9e9f99e52f80c0ba4c6)

Author SHA1 Message Date
Steve Tornio 7c47b48f5b add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12962 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-17 01:56:20 +00:00
Wei Chen 23cc89482b CVE correction, thanks Kurt. 
git-svn-id: file:///home/svn/framework3/trunk@12961 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-17 00:56:11 +00:00
Wei Chen eae350b88b CVE-2011-1260 seems to be the right one 
git-svn-id: file:///home/svn/framework3/trunk@12959 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-16 22:27:10 +00:00
James Lee 8e5311cb61 File.read is not binary safe. replace it with File.open in a few places where it matters. 
git-svn-id: file:///home/svn/framework3/trunk@12957 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-16 22:02:00 +00:00
Wei Chen 0a04835138 Added MS11-050 by d0c_s4vage 
git-svn-id: file:///home/svn/framework3/trunk@12956 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-16 21:19:12 +00:00
James Lee ea5dc1c85c use the right uri for our jar when other webserver modules are running 
git-svn-id: file:///home/svn/framework3/trunk@12944 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-14 23:57:10 +00:00
HD Moore d11e1f3294 Make all keywords consistent for modules. 
git-svn-id: file:///home/svn/framework3/trunk@12936 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-13 03:38:31 +00:00
HD Moore eea05fcaaa Correct the parent class name 
git-svn-id: file:///home/svn/framework3/trunk@12930 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-12 19:31:38 +00:00
HD Moore 7f3e2d182d Fix Axis2 to inherit from the correct class, prevent a stack trace when a non-Remote exploit has the cleanup method called. 
git-svn-id: file:///home/svn/framework3/trunk@12928 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-12 18:32:27 +00:00
David Rude 04d280fdd0 minor fixes 
git-svn-id: file:///home/svn/framework3/trunk@12925 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-12 00:04:55 +00:00
David Rude ee7454c5e6 Added IBM Tivoli Endpoint Manager HTTP POST query buffer overflow exploit 
git-svn-id: file:///home/svn/framework3/trunk@12922 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-11 23:48:18 +00:00
Steve Tornio 579d823070 add osvdb and cve refs 
git-svn-id: file:///home/svn/framework3/trunk@12893 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-09 20:44:52 +00:00
David Rude 247251ac07 Remove references to OUTPUTPATH options, unless files are created using a different method 
git-svn-id: file:///home/svn/framework3/trunk@12892 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-09 19:51:56 +00:00
HD Moore 85f5e5fb98 Fix the disclosure date to match when signing was made available to the masses 
git-svn-id: file:///home/svn/framework3/trunk@12891 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-09 17:08:05 +00:00
Wei Chen 24bb7c3d8d 7-Technologies IGSS v9.0 Rename command buffer overflow 
git-svn-id: file:///home/svn/framework3/trunk@12886 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-09 06:04:04 +00:00
HD Moore c3c061334d Add a "disclosure date" (applets were included in the first java release) and changing the title. 
git-svn-id: file:///home/svn/framework3/trunk@12883 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-08 03:31:49 +00:00
David Rude e2820918ad adds Windows XP SP3 target and updates the reference link 
git-svn-id: file:///home/svn/framework3/trunk@12873 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 20:29:02 +00:00
David Rude b9e398c706 adds support for SSL 
git-svn-id: file:///home/svn/framework3/trunk@12872 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 20:15:51 +00:00
David Rude 31a659e55a Fixed this up to use the new JS obfuscation hotness thanks to egyp7s rkelly fu! 
git-svn-id: file:///home/svn/framework3/trunk@12871 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 19:49:33 +00:00
Steve Tornio 377a18030a add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12869 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 19:06:18 +00:00
David Rude 3d7715ce60 Added Cisco AnyConnect VPN Client ActiveX download and execute exploit 
git-svn-id: file:///home/svn/framework3/trunk@12868 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 18:52:26 +00:00
Wei Chen 2e861a2fa8 Added CVE 
git-svn-id: file:///home/svn/framework3/trunk@12865 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-06 02:35:40 +00:00
James Lee 1c4bf118e8 add a version check 
git-svn-id: file:///home/svn/framework3/trunk@12847 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-03 23:47:44 +00:00
James Lee bee19278d7 add a new javascript obfuscation engine using rkelly for parsing. use it in browser_autopwn and ms10_018_ie_behaviors. see #1003 
git-svn-id: file:///home/svn/framework3/trunk@12839 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-03 00:36:26 +00:00
Steve Tornio 6890ec5610 add cve and osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@12816 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-02 12:24:25 +00:00
David Rude bfdb3a2a36 Added GoldenFTP exploit 
git-svn-id: file:///home/svn/framework3/trunk@12812 4d416f70-5f16-0410-b530-b9f4589650da
 2011-06-02 01:10:22 +00:00
Steve Tornio f43368ebe4 add osvdb refs 
git-svn-id: file:///home/svn/framework3/trunk@12779 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-31 14:33:19 +00:00
Wei Chen 396e476a03 Updated description, documented packet header a bit 
git-svn-id: file:///home/svn/framework3/trunk@12774 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-30 21:17:35 +00:00
Wei Chen b950219b0d Fix typo 
git-svn-id: file:///home/svn/framework3/trunk@12773 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-30 21:06:56 +00:00
Wei Chen 4d044ee592 Added 7-Technologies IGSS 9.0 Write File / EXE packet handling exploit 
git-svn-id: file:///home/svn/framework3/trunk@12772 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-30 21:00:49 +00:00
James Lee 5b91eadb87 fix the string replacement and do it at setup time instead of for every request 
git-svn-id: file:///home/svn/framework3/trunk@12747 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-27 19:36:12 +00:00
James Lee cd3f306ef2 clarify info a bit; make APPLETNAME option actually do something. 
git-svn-id: file:///home/svn/framework3/trunk@12746 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-27 19:13:47 +00:00
Jonathan Cran ef7a7adc1e escape slashes, thanks aushack 
git-svn-id: file:///home/svn/framework3/trunk@12738 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-27 06:14:52 +00:00
James Lee 5a54a408f5 stupid debugging stuff 
git-svn-id: file:///home/svn/framework3/trunk@12736 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-26 19:10:54 +00:00
James Lee c5781ae515 add support for PKCS12 (.pfx) cert/key files and cert chains in PEM files 
git-svn-id: file:///home/svn/framework3/trunk@12735 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-26 17:52:12 +00:00
James Lee 11a1b5dcad fix the requires for java signing. 
git-svn-id: file:///home/svn/framework3/trunk@12719 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 18:02:02 +00:00
James Lee 812bae9df9 add support for signing applets (or any other jar) with openssl. this removes the need for a dependency on RJB 
git-svn-id: file:///home/svn/framework3/trunk@12718 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 16:45:20 +00:00
Steve Tornio 782b1c6dd6 add stratsec ref, update disclosure to match public timeline 
git-svn-id: file:///home/svn/framework3/trunk@12716 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 13:57:12 +00:00
Patrick Webster 5617d23635 Removed erroneous awstatstotals_multisort print_status. 
git-svn-id: file:///home/svn/framework3/trunk@12715 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 10:45:36 +00:00
Patrick Webster 51ce0dba58 Added awstatstotals_multisort exploit module. 
git-svn-id: file:///home/svn/framework3/trunk@12714 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 10:42:37 +00:00
Wei Chen c1233db428 ugh! It's visiwavereport.exe, not visiwave.exe. 
git-svn-id: file:///home/svn/framework3/trunk@12711 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 04:48:25 +00:00
Wei Chen 0c60fe5a4b Couldn't help but patch-diff it and updated the description again 
git-svn-id: file:///home/svn/framework3/trunk@12710 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-25 04:45:17 +00:00
Wei Chen 6b6c6b2f64 We're actually not using 'Ret', it is removed. 
git-svn-id: file:///home/svn/framework3/trunk@12706 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-24 23:15:06 +00:00
Wei Chen af4b8bfef6 RCA done, the new description explains what really happens that causes the vulnerability. 
git-svn-id: file:///home/svn/framework3/trunk@12705 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-24 22:58:10 +00:00
Wei Chen f80c66ee8f Disclosure date is actually May 10 2011, confirmed by Mr_Me. 
git-svn-id: file:///home/svn/framework3/trunk@12698 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-23 23:55:03 +00:00
Steve Tornio fd6a3def6e add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12695 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-23 19:50:57 +00:00
James Lee ef48240606 Make it obvious which exploit is handling a request 
git-svn-id: file:///home/svn/framework3/trunk@12693 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-23 17:05:44 +00:00
Wei Chen d900892da8 Disclosure date change. '2007' wouldn't make sense now, would it? 
git-svn-id: file:///home/svn/framework3/trunk@12692 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-23 16:30:07 +00:00
Wei Chen 8089d10618 Added VisiWave Site Survey Report buffer overflow exploit 
git-svn-id: file:///home/svn/framework3/trunk@12691 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-23 16:28:38 +00:00
Steve Tornio 28d5febfad add osvdb ref 
git-svn-id: file:///home/svn/framework3/trunk@12688 4d416f70-5f16-0410-b530-b9f4589650da
 2011-05-22 23:41:15 +00:00