James Lee
a81d8d23bd
revamp version tests and the way exploits are run. fixes 673
...
git-svn-id: file:///home/svn/framework3/trunk@7891 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-16 00:13:57 +00:00
Joshua Drake
191e98dc54
changed module name
...
git-svn-id: file:///home/svn/framework3/trunk@7890 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 23:17:24 +00:00
Joshua Drake
1875e86f7a
remove executable bit
...
git-svn-id: file:///home/svn/framework3/trunk@7889 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 23:14:15 +00:00
Joshua Drake
d9aca586a2
tested against 9.1.0
...
git-svn-id: file:///home/svn/framework3/trunk@7888 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 23:12:08 +00:00
James Lee
06427b53c9
document the detection for 2k SP0
...
git-svn-id: file:///home/svn/framework3/trunk@7887 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 23:08:28 +00:00
James Lee
115899d24d
add minver and maxver. slightly tricky because the vuln affects moz 1.7 and ff 1.0
...
git-svn-id: file:///home/svn/framework3/trunk@7886 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 21:54:24 +00:00
James Lee
008c72e255
add proper version
...
git-svn-id: file:///home/svn/framework3/trunk@7885 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 21:49:32 +00:00
Joshua Drake
2070bd4756
took notes on targets from various other exploits
...
git-svn-id: file:///home/svn/framework3/trunk@7884 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 20:37:34 +00:00
Joshua Drake
56c2d32b1e
typo fix
...
git-svn-id: file:///home/svn/framework3/trunk@7883 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 20:37:15 +00:00
Steve Tornio
3677711cb0
adding OSVDB ref
...
git-svn-id: file:///home/svn/framework3/trunk@7882 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 20:34:01 +00:00
Joshua Drake
7b34f7b0f2
add exploit module for cve-2009-4324
...
git-svn-id: file:///home/svn/framework3/trunk@7881 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 20:15:08 +00:00
James Lee
2570fcee15
get rid of some more ^Ms
...
git-svn-id: file:///home/svn/framework3/trunk@7880 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 18:47:29 +00:00
James Lee
48c3709a25
correct maxver
...
git-svn-id: file:///home/svn/framework3/trunk@7879 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 18:46:53 +00:00
James Lee
196ee82179
bye-bye crlf
...
git-svn-id: file:///home/svn/framework3/trunk@7878 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 18:13:27 +00:00
HD Moore
f76a9a43e6
Switch compat payloads to normal vs ranked
...
git-svn-id: file:///home/svn/framework3/trunk@7877 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 13:14:01 +00:00
James Lee
f1a5103b32
allow the browser_autopwn mixin access to exploit modules' Rank constants. see 628
...
git-svn-id: file:///home/svn/framework3/trunk@7876 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 07:21:17 +00:00
Joshua Drake
f3a0bbc6d6
rename to make a bit more sense
...
git-svn-id: file:///home/svn/framework3/trunk@7875 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 06:05:30 +00:00
Joshua Drake
2c88e2eb62
rename to make a bit more sense
...
git-svn-id: file:///home/svn/framework3/trunk@7874 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 05:41:29 +00:00
Joshua Drake
d81c581f21
oops, remove hard coded payload
...
git-svn-id: file:///home/svn/framework3/trunk@7873 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 05:32:52 +00:00
HD Moore
8b6f452b11
Merges in mubix's VNC script (uses pivoting to keep all comms over the main session). Adds the -f parameter to the migrate command to indicate that a new process should be created always
...
git-svn-id: file:///home/svn/framework3/trunk@7872 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 05:10:33 +00:00
Joshua Drake
4c1034ad7f
add exploit module for cve-2006-2502
...
git-svn-id: file:///home/svn/framework3/trunk@7871 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 04:41:31 +00:00
Joshua Drake
b1c9b7e927
a few more svn:keywords fixes
...
git-svn-id: file:///home/svn/framework3/trunk@7870 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 02:11:42 +00:00
Joshua Drake
d5eb4d8217
add svn:keywords property
...
git-svn-id: file:///home/svn/framework3/trunk@7869 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 02:08:43 +00:00
Joshua Drake
8a95baa810
add exploit module for cve-2008-1697 from bannedit/muts
...
git-svn-id: file:///home/svn/framework3/trunk@7868 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 00:32:42 +00:00
Joshua Drake
1813a0fb9a
updated technique
...
git-svn-id: file:///home/svn/framework3/trunk@7867 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-15 00:32:07 +00:00
James Lee
b6c497467e
add a message about requiring libmysqlclient-dev, fixes 535
...
git-svn-id: file:///home/svn/framework3/trunk@7866 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:40:21 +00:00
James Lee
0cf566c0b9
fixes 688. better return address for greater reliability, works against FF-1.0.4 and Moz-1.7.1 on XPSP3 and 2kAS-SP0
...
git-svn-id: file:///home/svn/framework3/trunk@7865 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:27:28 +00:00
Mario Ceballos
c799df8559
target is no good. offsets change on different installs.
...
git-svn-id: file:///home/svn/framework3/trunk@7864 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:07:21 +00:00
Joshua Drake
88b9ee18af
clarified some version info
...
git-svn-id: file:///home/svn/framework3/trunk@7863 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 23:01:34 +00:00
Joshua Drake
c831cda3f5
milworm/exploitdb 9277 only covers m3u and mpf, not pls
...
git-svn-id: file:///home/svn/framework3/trunk@7862 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:59:32 +00:00
Mike Smith
f9ffc8b8bc
Add db_workspace command & other db refactoring.
...
* Added "workspaces" table and associated ActiveRecord class.
* Moved ActiveRecord models from db_objects.rb into separate files.
* Do the DB migration check every time you connect (was previously done
during db_create).
* Use :dependent => :destroy associations so that we don't have to
manually delete the dependent objects.
git-svn-id: file:///home/svn/framework3/trunk@7861 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:52:34 +00:00
Joshua Drake
8317b69aca
corrected disclosure date
...
git-svn-id: file:///home/svn/framework3/trunk@7860 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:44:37 +00:00
Joshua Drake
2524840348
renamed, new targets, now using seh...
...
git-svn-id: file:///home/svn/framework3/trunk@7859 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:40:56 +00:00
Steve Tornio
1dc2c41837
added OSVDB and exploit-db refs
...
git-svn-id: file:///home/svn/framework3/trunk@7858 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:29:10 +00:00
HD Moore
4311c20ee1
Warn the user when nessusv2 is specified (only v1 supported). See #690
...
git-svn-id: file:///home/svn/framework3/trunk@7857 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 22:00:54 +00:00
Joshua Drake
4d645796af
add exploit module from dookie
...
git-svn-id: file:///home/svn/framework3/trunk@7856 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 21:27:43 +00:00
James Lee
a03e3bf823
adds support for regular shell sessions when running commands with 'sessions -c'. Commands are run sequentially, so will take forever on large numbers of sessions.
...
git-svn-id: file:///home/svn/framework3/trunk@7855 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 21:17:49 +00:00
HD Moore
837c70715d
Reference updates from Steve Tornio
...
git-svn-id: file:///home/svn/framework3/trunk@7854 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 20:09:46 +00:00
Joshua Drake
ef0d86720a
updated description, added xp sp2+sp3 target, see #687
...
git-svn-id: file:///home/svn/framework3/trunk@7853 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 19:04:40 +00:00
HD Moore
0efbe3baf9
Remove the debug print
...
git-svn-id: file:///home/svn/framework3/trunk@7852 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 18:56:19 +00:00
HD Moore
97757c37a0
Adds an exploit module for the zabbix agent command execution flaw (no cve/bid/osvdb)
...
git-svn-id: file:///home/svn/framework3/trunk@7851 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 18:24:24 +00:00
Joshua Drake
255724d640
compile java applet with 1.3, Fixes #685
...
git-svn-id: file:///home/svn/framework3/trunk@7850 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 17:26:19 +00:00
HD Moore
e02f62e3aa
Switch to a return address that also works on SP0
...
git-svn-id: file:///home/svn/framework3/trunk@7849 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 17:14:08 +00:00
HD Moore
7a5267015e
Adds the ability to obtain a VNC desktop through an existing meterpreter session
...
git-svn-id: file:///home/svn/framework3/trunk@7848 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 14:50:26 +00:00
et
20222a44ea
Fix. Thats next step
...
git-svn-id: file:///home/svn/framework3/trunk@7847 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:58:57 +00:00
et
d6ee7c58ce
New wmap moule for generic checks
...
git-svn-id: file:///home/svn/framework3/trunk@7846 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 05:49:44 +00:00
HD Moore
8c7c62bcbc
Major update to the directory list based on the thousands of idiots scanning metasploit.com. Thanks! :)
...
git-svn-id: file:///home/svn/framework3/trunk@7845 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-14 04:35:31 +00:00
HD Moore
bce6355df1
Make sure we use a real module class instance when ranking
...
git-svn-id: file:///home/svn/framework3/trunk@7844 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 23:41:25 +00:00
HD Moore
e2cc45e4d4
Use the not-so-explicit platform
...
git-svn-id: file:///home/svn/framework3/trunk@7843 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 19:46:44 +00:00
HD Moore
89da53d570
Updates to encode_shellcode_stub
...
git-svn-id: file:///home/svn/framework3/trunk@7842 4d416f70-5f16-0410-b530-b9f4589650da
2009-12-13 19:43:17 +00:00