jvazquez-r7
37 lines
1.4 KiB
Ruby
37 lines
1.4 KiB
Ruby
# -*- coding: binary -*-
|
|
|
|
module Msf
|
|
class Exploit
|
|
class Remote
|
|
module HTTP
|
|
# This module provides a way of interacting with JBoss installations
|
|
module JBoss
|
|
require 'msf/core/exploit/http/jboss/base'
|
|
require 'msf/core/exploit/http/jboss/bean_shell'
|
|
require 'msf/core/exploit/http/jboss/bean_shell_scripts'
|
|
require 'msf/core/exploit/http/jboss/deployment_file_repository'
|
|
require 'msf/core/exploit/http/jboss/deployment_file_repository_scripts'
|
|
|
|
include Msf::Exploit::Remote::HttpClient
|
|
include Msf::Exploit::Remote::HTTP::JBoss::Base
|
|
include Msf::Exploit::Remote::HTTP::JBoss::BeanShell
|
|
include Msf::Exploit::Remote::HTTP::JBoss::BeanShellScripts
|
|
include Msf::Exploit::Remote::HTTP::JBoss::DeploymentFileRepository
|
|
include Msf::Exploit::Remote::HTTP::JBoss::DeploymentFileRepositoryScripts
|
|
|
|
def initialize(info = {})
|
|
super
|
|
|
|
register_options(
|
|
[
|
|
OptString.new('TARGETURI', [true, 'The URI path of the JMX console', '/jmx-console']),
|
|
OptEnum.new('VERB', [true, 'HTTP Method to use (for CVE-2010-0738)', 'POST', ['GET', 'POST', 'HEAD']]),
|
|
OptString.new('PACKAGE', [false, 'The package containing the BSHDeployer service'])
|
|
], Msf::Exploit::Remote::HTTP::JBoss)
|
|
end
|
|
end
|
|
end
|
|
end
|
|
end
|
|
end
|