0b7b71e240
Correct run-on sentence
2012-05-23 10:27:23 -05:00
94f114b69a
Fix typos
2012-05-23 10:22:52 -05:00
7a4f1a111b
Merge branch 'cve-2008-0320_openoffice_bof' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-cve-2008-0320_openoffice_bof
2012-05-23 10:20:16 -05:00
287d68f304
added module for CVE-2008-0320
2012-05-23 17:14:11 +02:00
c4b64a51f7
Added reference to vendor advisory
2012-05-22 13:22:26 -05:00
87ce3fe2f7
Adding extra ref from jjarmoc
2012-05-22 11:17:57 -05:00
c9604d8902
Add an invisible reference
2012-05-22 10:52:54 -05:00
d9ab464d4d
A very quick update to the title.
2012-05-22 03:11:05 -05:00
c9aa057b6d
Merge pull request #407 from wchen-r7/osx_voice
...
OSX Text-to-Speech tool
2012-05-22 01:06:50 -07:00
ca08e225fb
Add OSX Text-to-Speech tool
2012-05-22 03:03:30 -05:00
c823e8099e
randomization when possible for flexnet_lmgrd_bof
2012-05-22 08:32:10 +02:00
cafe803217
Fix typos
2012-05-21 16:32:33 -05:00
72b1f113ce
Added module for ZDI-12-052
2012-05-21 16:32:33 -05:00
df85e4f586
Remove trailing comma
2012-05-21 16:28:02 -05:00
17943c7a48
Makes it so we don't ever use local config files for Net::SSH
...
Also makes sure that the :config =>false option keeps
Net:SSH from meddling with knowns_hosts too
2012-05-21 16:09:08 -05:00
c386e1ce31
Add an option to the schemadump modules to not display output to the
...
screen
2012-05-21 16:09:07 -05:00
77f95df1e9
Banner encoding fix when running against dd-wrt on ruby 1.9.3
2012-05-21 14:50:57 -05:00
125aa43072
PowerShell post module download and exec
...
This adds sempervictus's PowerShell post module, along with a default
post module one can use for quick testing (for expected results, see
the screencap Gist at https://gist.github.com/6011cb87b01e970deca8
[Closes #403 ]
Squashed commit of the following:
commit c6b5a6aac1dc8781c67b611289d7710129592e83
Author: Tod Beardsley <todb@metasploit.com >
Date: Mon May 21 14:43:48 2012 -0500
Minor tweaks to language
commit ef088e135cd7b0ccb514a3011889154661d5bd09
Merge: 0a05455 1e14211
Author: Tod Beardsley <todb@metasploit.com >
Date: Mon May 21 14:34:27 2012 -0500
Merge remote branch 'todb/default-powershell' into Pull403
commit 0a0545558604c53d4648e3314ca8963ff9b225a7
Author: Tod Beardsley <todb@metasploit.com >
Date: Mon May 21 14:33:33 2012 -0500
Reverting unrelated telnet fix
While I'm sure it's great, it needs to be tested.
commit 1e1421102b44a4c60c6eb9b442227075e959d7c6
Author: Tod Beardsley <todb@metasploit.com >
Date: Mon May 21 14:14:09 2012 -0500
Adds a default path to a script for exec_powershell.rb
commit 9978787f44896d06744d50febf4344111edcd7b1
Author: Tod Beardsley <todb@metasploit.com >
Date: Mon May 21 14:06:46 2012 -0500
Adds a new default powershell script
commit 25b605949fc4a7fd932f21b31f136207eb36207eb21ec77eb034772c12https://github.com/rapid7/metasploit-framework
commit 21b31f10c581a7d62c77eb03c77eb03ca489d5af752183aahttps://github.com/rapid7/metasploit-framework
commit 89d5af7ab281a7d62c6d672c7bc37e3e86dc4ed542e23e86dc4c40f619ed477frageltman@sempervictus.com >
Date: Sun Feb 5 13:35:11 2012 -0500
method call fix for psh-net encoder
commit 7b035e6da0rageltman@sempervictus.com >
Date: Fri Feb 3 18:53:54 2012 -0500
PS encoders: .net and architecture dependent native (psh-net, psh)
commit 7a2749bf2632730b9f89853drageltman@sempervictus.com >
Date: Fri Feb 3 18:38:03 2012 -0500
Merge branch 'master' into powershell
commit 32730b96bee69fcd1f6a6963rageltman@sempervictus.com >
Date: Wed Jan 25 10:33:17 2012 -0500
Merge branch 'master' of https://github.com/rapid7/metasploit-framework into powershell
commit e69fcd1a83rageltman@sempervictus.com >
Date: Wed Jan 25 07:59:38 2012 -0500
msfvenom psh addition
commit 9a5d8ead7erageltman@sempervictus.com >
Date: Wed Jan 25 07:29:38 2012 -0500
Proper author reference
commit 9fd8ac75a8rageltman@sempervictus.com >
Date: Tue Jan 24 19:07:30 2012 -0500
Fix script handling
commit fa363dfe96rageltman@sempervictus.com >
Date: Tue Jan 24 17:31:09 2012 -0500
added Msf::Post::Windows::Powershell, reworked post module to use mixin
commit e078d15b54rageltman@sempervictus.com >
Date: Mon Jan 23 13:42:35 2012 -0500
vprint_good change
commit 355f8bb19arageltman@sempervictus.com >
Date: Mon Jan 23 12:50:51 2012 -0500
exec powershell module
commit 5f95094449rageltman@sempervictus.com >
Date: Mon Jan 23 12:45:41 2012 -0500
powershell encoder support - Redmine Feature #6049
2012-05-21 14:48:16 -05:00
4772c1258e
Removing hashcollision_dos module due to license violation
...
The description text is a copy-paste of
http://www.ocert.org/advisories/ocert-2011-003.html , which has a
specific creative commons liscence prohibiting derivative works.
Since I have no idea what else in this module is a license violating,
I'm pulling it completely. I suspect a lot, though -- there are weird
all-caps methods in the module that look like copy-pastes as well.
Next time, please contribute original work, or at least work that is not
encumbered by restrictive licensing.
2012-05-21 11:28:58 -05:00
675dfe4e14
Don't keep the weblogi return codes secret
2012-05-21 11:27:24 -05:00
1104dccde8
Noting rhost/rport, cli.peerhost where appropriate
...
There's no msftidy check for this, and it's irritating to have to
remember to do this all the time.
2012-05-21 11:19:02 -05:00
7cc905832e
Consistent caps on SVG in batik_svg_java exploit
...
Also, modules should not refer to themselves as "I" or "me." It's
creepy.
2012-05-21 11:14:03 -05:00
5dd866ed4a
Fixed print_status to include rhost:rport
...
Also don't let the failed user:pass be a mystery to the user.
2012-05-21 11:11:34 -05:00
eea20e773b
Capitalization fixups on hashcollision_dos
2012-05-21 11:06:18 -05:00
1fc7597a56
Msftidy fixes.
...
Fixed up activecollab_chat, batik_svg_java, and foxit_reader_launch
All whitespace fixes.
2012-05-21 10:59:52 -05:00
822e109b1f
Merge pull request #398 from wchen-r7/foxit_reader_launch
...
CVE-2009-0837 by bannedit - Foxit Reader 3 Launch Action BoF
2012-05-20 07:58:29 -07:00
ba2787df8a
add osvdb ref
2012-05-20 07:13:56 -05:00
c95a06e247
add osvdb ref
2012-05-20 07:13:31 -05:00
628233d15c
Merge pull request #399 from wchen-r7/hp_storageworks
...
Add HP StorageWorks VSA command execution vulnerability
2012-05-19 14:14:49 -07:00
d8c3edd316
Add HP StorageWorks VSA command execution vulnerability
2012-05-19 14:53:45 -05:00
f9bcb95952
Correct EDB references
2012-05-19 02:24:29 -05:00
964a6af423
Add Active Collab chat module PHP injection exploit, by mr_me
2012-05-19 02:06:30 -05:00
e4f80a1fab
Francisco is the the one who found it according to advisory
2012-05-18 17:12:52 -05:00
41aac751e9
Add CVE-2009-0837 by bannedit - Foxit Reader 3 Launch Action Buffer Overflow
...
This was added last year, but yanked due to some reliability issues.
bannedit gave me the updated version recently, and the issue he was having
appears to be resolved.
There is no good P/P/R to use in XP SP3, so that system isn't supported.
2012-05-18 13:25:51 -05:00
bedf010676
description modified
2012-05-18 01:23:09 +02:00
e7f5bf132c
trying to improve bea weblogic connector bof
2012-05-18 01:13:56 +02:00
c0d17734ed
Improve run-on sentences.
2012-05-17 15:00:00 -05:00
32a0596a03
Merge branch 'oracle_bea_post_bof' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-oracle_bea_post_bof
2012-05-17 14:52:10 -05:00
c4ab521d7b
better tab indentation
2012-05-17 21:41:31 +02:00
0b35ab6a75
If the target isn't support, make sure we warn the user
2012-05-17 12:34:17 -05:00
a21e832336
fingerprinting bea connector with Transfer-Encoding
2012-05-17 19:21:16 +02:00
952ada1742
Fix broken target (variable naming)
2012-05-17 11:37:49 -05:00
2fccf4674f
Be explicit on what version we've tested
2012-05-17 11:04:40 -05:00
1b70ba8208
Merge branch 'batik_module' of https://github.com/jvazquez-r7/metasploit-framework into jvazquez-r7-batik_module
2012-05-17 10:55:58 -05:00
0fd3f96720
errata fixed
2012-05-17 17:23:16 +02:00
14d8ba00af
Added batik svg java module
2012-05-17 16:48:38 +02:00
99368d27e5
Fix a missing require
2012-05-17 09:37:23 -05:00
9a5e4d6500
Added target BEA Weblogic 8.1 SP4
2012-05-17 11:07:22 +02:00
445bd90afb
Added module for CVE-2008-3257
2012-05-17 10:28:18 +02:00
fe7928c18d
Merge pull request #390 from jlee-r7/consolidate-250-254-375
...
Consolidate #250 , #254 , #375
2012-05-16 17:07:33 -07:00
sinn3r