Land #15063, Add fix to nagios_xi_plugins_check_ping_authenticated_rc…

…e.rb to ensure old versions can still be detected as being vulnerable
rapid7 · Apr 19, 2021 · 3b1512e · 3b1512e
2 parents 6ecaeaf + d60cdbe
commit 3b1512e
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/modules/exploits/linux/http/nagios_xi_plugins_check_plugin_authenticated_rce.rb b/modules/exploits/linux/http/nagios_xi_plugins_check_plugin_authenticated_rce.rb
@@ -166,6 +166,11 @@ def check
     end
 
     print_status("Target is Nagios XI with version #{nagios_version}")
+
+    if /^\d{4}R\d\.\d/.match(nagios_version) || /^\d{4}RC\d/.match(nagios_version) || /^\d{4}R\d.\d[A-Ha-h]/.match(nagios_version) || nagios_version == '5R1.0'
+      nagios_version = '1.0.0' # Set to really old version as a placeholder. Basically we don't want to exploit these versions.
+    end
+
     # check if the target is actually vulnerable
     @version = Rex::Version.new(nagios_version)
     if @version < Rex::Version.new('5.6.6')