 Brent Cook
|
1af360d7e0
|
Land #10108, add IBM QRadar SIEM exploit
|
2018-07-10 11:52:32 -05:00 |
|
|
Wei Chen
|
5fc5a47cd2
|
Update CVE references for exploit modules
These are based on cross references by EDB, OSVDB, module short
name, blog post and BID.
|
2018-07-08 18:46:04 -05:00 |
|
|
Brent Cook
|
05a0d79be7
|
Land #10219, Add HP VAN SDN Controller exploit
|
2018-07-05 14:21:44 -05:00 |
|
|
William Vu
|
53d5d82498
|
Rename module to match new vector
|
2018-07-05 13:31:16 -05:00 |
|
|
William Vu
|
762b4b5e53
|
Simplify creds auth by checking X-Auth-Token alone
It's a lot more direct than checking for the redirect.
|
2018-07-05 13:20:27 -05:00 |
|
|
William Vu
|
2b069f45ca
|
Clarify how we're using the auth token for creds
In the service token's case, the service token *is* the auth token.
|
2018-07-05 13:05:23 -05:00 |
|
|
William Vu
|
41b0adad88
|
Use uninstall action command injection
|
2018-07-03 18:07:22 -05:00 |
|
|
William Vu
|
a25a656d28
|
Add "E" to HP to make HPE for better searches
We'll stick with calling it HP everywhere else.
|
2018-07-03 10:29:09 -05:00 |
|
|
William Vu
|
1bf94ac448
|
Spruce up check method and related
|
2018-07-02 13:59:24 -05:00 |
|
|
William Vu
|
6e090acc76
|
Stop joking with timeouts
|
2018-07-02 13:18:31 -05:00 |
|
|
William Vu
|
78ca4d4217
|
Finally use Msf::Util::EXE.to_zip 8)
|
2018-07-02 13:04:59 -05:00 |
|
|
Pedro Ribeiro
|
6ace45e312
|
Add correct IBM CVE
Turns out IBM decided to revisit the advisory and attribute 3 different CVE numbers intead of 1.
|
2018-06-30 12:06:16 +07:00 |
|
|
William Vu
|
78cefe0528
|
Clarify original exploit credit
It's definitely more than a PoC (exploit). It's weaponized.
|
2018-06-29 13:02:40 -05:00 |
|
|
William Vu
|
34f303187f
|
Drop privesc retval, since it's obsoleted by print
|
2018-06-29 12:53:59 -05:00 |
|
|
Jacob Robles
|
fc3199259b
|
Land #9958, Nagios xi 2 electric
|
2018-06-29 12:16:18 -05:00 |
|
|
William Vu
|
dbb502ae19
|
Refactor code and address review comments
|
2018-06-29 12:13:15 -05:00 |
|
|
Jacob Robles
|
675a736ab7
|
Update Docs
|
2018-06-29 11:08:31 -05:00 |
|
|
Jacob Robles
|
574c47cba6
|
Change Ranking
Command to change the database user
account could cause a DoS condition
if the credentials are incorrect.
|
2018-06-29 10:56:18 -05:00 |
|
|
Jacob Robles
|
57b89444f3
|
Additional style fixes
|
2018-06-29 10:53:57 -05:00 |
|
|
Jacob Robles
|
7532490a1e
|
Style/Whitespace fixes
|
2018-06-29 07:02:45 -05:00 |
|
|
William Vu
|
36a37cf6ab
|
Add HP VAN SDN Controller exploit
|
2018-06-28 02:14:04 -05:00 |
|
|
Pedro Ribeiro
|
d77ee20fc7
|
Add fix for 7.3.0
|
2018-05-30 00:59:11 +03:00 |
|
|
Pedro Ribeiro
|
f1663afd53
|
Change patch level of vulnerable versions
|
2018-05-30 00:37:29 +03:00 |
|
|
Pedro Ribeiro
|
476030bbd6
|
Fix grep with proper Base64 support; IBM bug!
|
2018-05-29 18:49:52 +03:00 |
|
|
Pedro Ribeiro
|
a3c7ac830f
|
Fix typo in rand
|
2018-05-29 18:40:50 +03:00 |
|
|
Pedro Ribeiro
|
ac5718d24c
|
Fix whitespace
|
2018-05-29 15:02:36 +03:00 |
|
|
Pedro Ribeiro
|
809982b430
|
Make changes requested by bcoles
|
2018-05-29 14:48:57 +03:00 |
|
|
Pedro Ribeiro
|
56dd07639f
|
add vuln versions
|
2018-05-28 17:37:58 +03:00 |
|
|
Pedro Ribeiro
|
aaaa9c7508
|
Fix warnings from travis
|
2018-05-28 17:18:52 +03:00 |
|
|
Pedro Ribeiro
|
e126681814
|
Changed disclosure date
|
2018-05-28 17:08:48 +03:00 |
|
|
Pedro Ribeiro
|
cfb7d4c2fe
|
Add github url
|
2018-05-28 16:53:54 +03:00 |
|
|
Pedro Ribeiro
|
7db8183bc7
|
Create file for CVE-2018-1418
|
2018-05-28 16:39:10 +03:00 |
|
|
lucyoa
|
6cc1a8dcbd
|
Rubocop fixes
|
2018-05-22 10:34:05 -04:00 |
|
|
lucyoa
|
6ae55aadd4
|
Fixing documentation, improving exploits code
|
2018-05-20 12:55:46 -04:00 |
|
|
lucyoa
|
8dd7a27f7b
|
Fixes according to code review
|
2018-05-14 05:46:23 -04:00 |
|
|
lucyoa
|
f65361258b
|
Adding vulnerable firmwares to description
|
2018-05-13 15:08:32 -04:00 |
|
|
lucyoa
|
382364a3ff
|
Adding documentation, improving description
|
2018-05-13 15:04:40 -04:00 |
|
|
lucyoa
|
c3ad02121c
|
Exploit for D-Link DSL2750B OS Command Injection vulnerability
|
2018-05-13 13:58:35 -04:00 |
|
|
HD Moore
|
2a211d99af
|
Nuke base_directory after all, FileDropper does not like our path
|
2018-05-06 22:58:06 -05:00 |
|
|
HD Moore
|
a9f9d61f1e
|
Use the target_directory, not base
|
2018-05-06 22:56:59 -05:00 |
|
|
HD Moore
|
cd48507aab
|
Use FileDropper, switch to earlier target directory
|
2018-05-06 22:56:36 -05:00 |
|
|
HD Moore
|
1f7b13bea8
|
Additional module cleanup
|
2018-05-06 22:50:13 -05:00 |
|
|
HD Moore
|
3d172df0c4
|
MD5 of TID and cleanup if statement
|
2018-05-06 22:24:36 -05:00 |
|
|
HD Moore
|
68f2e08400
|
Swap to positive logic
|
2018-05-06 22:22:47 -05:00 |
|
|
HD Moore
|
9712215e66
|
Add Bugtraq ID
|
2018-05-06 22:21:13 -05:00 |
|
|
HD Moore
|
5d57e9db34
|
Remove unnecessary RHOST definition
|
2018-05-06 22:20:51 -05:00 |
|
|
HD Moore
|
8141e949fc
|
Note the runtimes
|
2018-05-05 18:34:11 -05:00 |
|
|
HD Moore
|
e775a97ae2
|
Adds panos_readsessionvars exploit module
|
2018-05-05 15:41:17 -05:00 |
|
|
BennyHusted
|
c62fc79537
|
Fixed typo in description.
|
2018-05-01 11:37:33 -04:00 |
|
|
BennyHusted
|
89d6ded805
|
Removing the Nagios enum module, adding description
|
2018-05-01 11:35:45 -04:00 |
|