cd74e34e3c
Fixed Authors
2021-08-31 18:24:51 -05:00
b5b0b3087a
Fixed References and Description
2021-08-31 18:24:50 -05:00
56cde3eaba
Add Geutebruck CVE_2021_335XX command injections module
2021-08-31 18:24:14 -05:00
4a9a15e638
Run Rubocop layout rules on modules
2021-08-27 17:19:43 +01:00
8e00c5a188
Add default payload option to targets
2021-08-20 16:38:22 +01:00
521ca14773
Add Lucee Administrator CVE-2021-21307 exploit
2021-08-16 10:09:34 -05:00
29b193406e
Fix for file clean up in the Cisco Hyperflex file upload RCE module
2021-07-30 14:59:52 -04:00
951809e164
Land #15491 , add module stability notes
2021-07-29 17:24:42 +01:00
809081bc5f
Land #15279 , add Pi-Hole lpe
2021-07-29 11:15:17 -05:00
0561ae978f
fix typos, pihole version in docs
2021-07-29 11:13:58 -05:00
56510a2e8e
Updates some notes on modules that weren't passing tests due to new rubocop rule
2021-07-28 16:20:02 +01:00
6a6c08c773
Fix edge case in method overloading
2021-07-12 20:29:56 -05:00
d29532d4c4
Add VMware vCenter Server CVE-2021-21985 exploit
2021-07-12 13:07:05 -05:00
6fbaecf919
Backport print changes to recent modules
2021-07-08 21:26:35 -05:00
570ba091f6
Update some typos in the documentation and also update the exploit module to handle various cases whereby the dbus-send command might end up timing out due to TIMEOUT being too low and to fix some final issues found during testing
2021-07-08 16:24:01 -05:00
9f88ef0954
Fix up review comments
2021-07-08 16:22:29 -05:00
54ee8f7ae7
Added cmd_delay nil check, updated title
2021-07-08 16:20:45 -05:00
0f67dd5212
Fixed get_cmd_delay, reponded to comments
2021-07-08 16:20:38 -05:00
9a07039e7e
Updated docs
2021-07-08 16:09:15 -05:00
fdbf669da2
Fixed check for /bin/su
2021-07-08 16:09:12 -05:00
285a6338fa
Print error instead of failwith when exploit commands unsuccessful
2021-07-08 16:09:12 -05:00
f797f30651
Fixed call to write directory
2021-07-08 16:09:04 -05:00
1a73cfbe25
Updated check method
2021-07-08 16:09:03 -05:00
c5a9ecd45b
WritableDir as advanced opt
2021-07-08 16:09:03 -05:00
f87f831aba
Module updates + Docs
2021-07-08 16:09:02 -05:00
8d2d445699
Send one large command over many of smaller size
2021-07-08 16:08:36 -05:00
e7608d79f6
Polkit authentication bypass
2021-07-08 16:08:33 -05:00
dc9c0035ab
Land #15371 , check if apport-cli is in $PATH
...
Fixes #15370
2021-07-08 09:28:35 -04:00
636b790acb
Update to using the AutoCheck mixin
2021-07-08 09:03:42 -04:00
af986380d3
Fix CheckCode
...
It's closer to CheckCode::Appears than CheckCode::Vulnerable.
2021-07-06 22:22:27 -05:00
daa5b32393
Update from review
...
- Remove `MeterpreterTryToFork` option logic
- Add `Prepend` code directly under `Payload` info
- Rebase to use the updated `PrependFork`
- Add logic to verify that shells specified in the options really exist
on the remote host
2021-06-30 18:13:35 +02:00
eca20bec92
Update from code review
...
- Fix documentation typos
- Rename `MeterpreterBackground` Mettle option to `MeterpreterTryToFork`
2021-06-30 11:02:11 +02:00
ccaedd6c9a
Last additions and improvements
...
- add binaries
- add documentation
- backup `runc` binary in the exploit C file
- add `MeterpreterBackground` options to set Mettle `background` option
- add `WsfDelay` logic
- refactor code
- add cleanup logic
- add restore `runc` binary logic
2021-06-30 11:02:11 +02:00
1b59b8c83e
Rebase and fix conflicts in lib/msf/core/post/common.rb
2021-06-30 11:02:11 +02:00
d40656b852
apport_abrt_chroot_priv_esc: check if apport-cli is in $PATH
2021-06-25 11:48:16 +00:00
3c7d96695e
Land #15349 , add rConfig vendors auth rce
2021-06-24 10:43:18 -05:00
9f864df5f1
use Rex::Version instead of Gem::Version
2021-06-24 10:14:17 -05:00
df1faf85ff
rename files, change version check, use cookie jar
2021-06-24 09:47:38 -05:00
1d2e3212d3
using MIME + added some guards
2021-06-18 10:43:30 +02:00
7781d9ff1e
Update modules/exploits/linux/http/rconfig_authenticated_rce.rb
...
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com >
2021-06-18 10:22:11 +02:00
1e7737f8b4
Update modules/exploits/linux/http/rconfig_authenticated_rce.rb
...
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com >
2021-06-18 10:17:52 +02:00
f4bd18c5a3
Update modules/exploits/linux/http/rconfig_authenticated_rce.rb
...
Co-authored-by: Jeffrey Martin <jeffrey_martin@rapid7.com >
2021-06-18 09:21:00 +02:00
397c9ef140
Land #15333 , Cisco HyperFlex File Upload RCE
2021-06-17 13:40:39 -04:00
281fce0c94
Cisco HyperFlex File Upload RCE module
...
beta draft
RCE working with linux/x64/meterpreter_reverse_tcp
rubocop
Updated title, removed newlines
Responded to comments
Rubo cop offenses
Update documentation/modules/exploit/linux/http/cisco_hyperflex_file_upload_rce.md
Co-authored-by: wvu <wvu-r7@users.noreply.github.com >
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com >
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com >
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com >
Update modules/exploits/linux/http/cisco_hyperflex_file_upload_rce.rb
Co-authored-by: wvu <wvu-r7@users.noreply.github.com >
Responded to comments
Rubocop offenses
Added support for Java Dropper
Made changes to Linux Dropper
Rubocop
Improved check method, changed to default staged paylod, removed TODO
Switched to single-quoted strings
2021-06-17 12:38:47 -04:00
dca4f3f471
fix download link
2021-06-17 15:19:42 +02:00
0fda6b348d
initial commit
2021-06-17 15:15:59 +02:00
e3a0228f79
Adjust exploit module title for rubocop compliance
2021-06-10 16:54:35 -05:00
de8180b666
Update module title to correct state affected versions
2021-06-10 09:42:26 -05:00
ea7eaba7a9
added cve
...
Signed-off-by: MucahitSaratar <trregen222@gmail.com >
2021-06-10 09:35:42 -05:00
4796779a29
Add more fixes to the module and documentation
2021-06-10 09:35:10 -05:00
Your Name