sinn3r
22811257db
This patch fixes #4711. The problem here is that the browser sometimes will shutdown some of our exploit's connections (in my testing, all Java), and that will cause Ruby to call a rb_sys_fail with "getpeername(2)". The error goes all the way to Rex::IO::StreamServer's monitor_listener method, which triggers a "break" to quit monitoring. And then this causes another chain of reactions that eventually forces BrowserAutoPwn to quit completely (while the JavaScript on the browser is still running)
71 lines
1.2 KiB
Ruby
71 lines
1.2 KiB
Ruby
# -*- coding: binary -*-
|
|
require 'rex/socket'
|
|
require 'rex/socket/tcp'
|
|
require 'rex/io/stream_server'
|
|
|
|
###
|
|
#
|
|
# This class provides methods for interacting with a TCP server. It
|
|
# implements the Rex::IO::StreamServer interface.
|
|
#
|
|
###
|
|
module Rex::Socket::TcpServer
|
|
|
|
include Rex::Socket
|
|
include Rex::IO::StreamServer
|
|
|
|
##
|
|
#
|
|
# Factory
|
|
#
|
|
##
|
|
|
|
#
|
|
# Creates the server using the supplied hash.
|
|
#
|
|
def self.create(hash = {})
|
|
hash['Proto'] = 'tcp'
|
|
hash['Server'] = true
|
|
self.create_param(Rex::Socket::Parameters.from_hash(hash))
|
|
end
|
|
|
|
#
|
|
# Wrapper around the base class' creation method that automatically sets
|
|
# the parameter's protocol to TCP and sets the server flag to true.
|
|
#
|
|
def self.create_param(param)
|
|
param.proto = 'tcp'
|
|
param.server = true
|
|
Rex::Socket.create_param(param)
|
|
end
|
|
|
|
#
|
|
# Accepts a child connection.
|
|
#
|
|
def accept(opts = {})
|
|
t = super()
|
|
|
|
# jRuby compatibility
|
|
if t.respond_to?('[]')
|
|
t = t[0]
|
|
end
|
|
|
|
if (t)
|
|
t.extend(Rex::Socket::Tcp)
|
|
t.context = self.context
|
|
|
|
pn = t.getpeername
|
|
|
|
# We hit a "getpeername(2)" from Ruby
|
|
return nil unless pn
|
|
|
|
t.peerhost = pn[1]
|
|
t.peerport = pn[2]
|
|
end
|
|
|
|
t
|
|
end
|
|
|
|
end
|
|
|