Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

smb client pipe auditor module should preprend pipe names with a missing backslash #11855

Closed
wants to merge 1 commit into from

Conversation

Projects
None yet
1 participant
@NoodleOfDeath
Copy link
Contributor

commented May 19, 2019

The named_pipes.txt word list provided by metasploit framework contains pipe names that are not prefixed with a backslash. The 'auxiliary/scanner/smb/pipe_auditor' module does not work properly unless each pipe name is prefixed with a backslash. I updated 'lib/exploit/smb/client/pipe_auditor.rb' to check for the missing backslash and to prepend it if missing.

Tell us what this change does. If you're fixing a bug, please mention
the github issue number.

Please ensure you are submitting from a unique branch in your repository to master in Rapid7's.

Verifications

List the steps needed to make sure this thing works

  • Start msfconsole
  • use exploit/windows/smb/ms08_067_netapi
  • ...
  • Verify the thing does what it should
  • Verify the thing does not do what it should not
  • Document the thing and how it works (Example)
NoodleOfDeath NoodleOfDeath
smb client pipe auditor now preprends pipe names with a backslash if …
…the backslash is missing like they are in the named_pipes.txt file
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.