From 13e7f6cc2728e2aaa0b1f9a8ae5364678efa103b Mon Sep 17 00:00:00 2001 From: h00die Date: Fri, 15 Sep 2023 16:35:55 -0400 Subject: [PATCH 1/4] fix related modules references --- .../http/netgear_pnpx_getsharefolderlist_auth_bypass.rb | 4 ++-- modules/auxiliary/admin/http/netgear_r6700_pass_reset.rb | 4 ++-- modules/auxiliary/gather/pulse_secure_file_disclosure.rb | 1 + modules/auxiliary/scanner/http/emby_ssrf_scanner.rb | 7 ++++++- modules/auxiliary/scanner/http/emby_version_ssrf.rb | 7 ++++++- modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb | 3 ++- modules/exploits/windows/smb/smb_doublepulsar_rce.rb | 1 + 7 files changed, 20 insertions(+), 7 deletions(-) diff --git a/modules/auxiliary/admin/http/netgear_pnpx_getsharefolderlist_auth_bypass.rb b/modules/auxiliary/admin/http/netgear_pnpx_getsharefolderlist_auth_bypass.rb index c0ca23ec00e6..555c754b13f6 100644 --- a/modules/auxiliary/admin/http/netgear_pnpx_getsharefolderlist_auth_bypass.rb +++ b/modules/auxiliary/admin/http/netgear_pnpx_getsharefolderlist_auth_bypass.rb @@ -39,9 +39,9 @@ def initialize(info = {}) 'Notes' => { 'Stability' => [CRASH_SAFE], 'Reliability' => [REPEATABLE_SESSION], - 'SideEffects' => [CONFIG_CHANGES, IOC_IN_LOGS] + 'SideEffects' => [CONFIG_CHANGES, IOC_IN_LOGS], + 'RelatedModules' => [ 'exploit/linux/telnet/netgear_telnetenable' ], # This module relies on users also running exploit/linux/telnet/netgear_telnetenable to get the shell. }, - 'RelatedModules' => [ 'exploit/linux/telnet/netgear_telnetenable' ], # This module relies on users also running exploit/linux/telnet/netgear_telnetenable to get the shell. 'DisclosureDate' => '2021-09-06', 'DefaultTarget' => 0 ) diff --git a/modules/auxiliary/admin/http/netgear_r6700_pass_reset.rb b/modules/auxiliary/admin/http/netgear_r6700_pass_reset.rb index b63d92994c01..19ced795dad7 100644 --- a/modules/auxiliary/admin/http/netgear_r6700_pass_reset.rb +++ b/modules/auxiliary/admin/http/netgear_r6700_pass_reset.rb @@ -52,9 +52,9 @@ def initialize(info = {}) 'SideEffects' => [ CONFIG_CHANGES ], # This module will change the configuration by # resetting the router to the default factory password. 'Stability' => [ CRASH_SERVICE_DOWN ], # This module will crash the target service after it is run. - 'Reliability' => [] + 'Reliability' => [], + 'RelatedModules' => [ 'exploit/linux/telnet/netgear_telnetenable' ], # This module relies on users also running exploit/linux/telnet/netgear_telnetenable to get the shell. }, - 'RelatedModules' => [ 'exploit/linux/telnet/netgear_telnetenable' ], # This module relies on users also running exploit/linux/telnet/netgear_telnetenable to get the shell. 'DisclosureDate' => '2020-06-15', 'DefaultTarget' => 0 ) diff --git a/modules/auxiliary/gather/pulse_secure_file_disclosure.rb b/modules/auxiliary/gather/pulse_secure_file_disclosure.rb index 181d57c3b5b2..e6b18d9214d3 100644 --- a/modules/auxiliary/gather/pulse_secure_file_disclosure.rb +++ b/modules/auxiliary/gather/pulse_secure_file_disclosure.rb @@ -54,6 +54,7 @@ def initialize(info = {}) 'Notes' => { 'Stability' => [CRASH_SAFE], 'SideEffects' => [IOC_IN_LOGS], + 'Reliability' => [], 'RelatedModules' => ['exploit/linux/http/pulse_secure_cmd_exec'] } )) diff --git a/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb b/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb index 7c5da5a56618..22febe9b1920 100644 --- a/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb +++ b/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb @@ -18,7 +18,12 @@ def initialize 'Author' => 'Btnz', 'License' => MSF_LICENSE, 'Disclosure Date' => '2020-10-01', - 'RelatedModules' => ['auxiliary/scanner/http/emby_version_ssrf'], + 'Notes' => { + 'Stability' => [], + 'SideEffects' => [], + 'Reliability' => [], + 'RelatedModules' => ['auxiliary/scanner/http/emby_version_ssrf'], + } 'References' => [ ['CVE', '2020-26948'], ['URL', 'https://github.com/btnz-k/emby_ssrf'] diff --git a/modules/auxiliary/scanner/http/emby_version_ssrf.rb b/modules/auxiliary/scanner/http/emby_version_ssrf.rb index e41425c848eb..35876f92df31 100644 --- a/modules/auxiliary/scanner/http/emby_version_ssrf.rb +++ b/modules/auxiliary/scanner/http/emby_version_ssrf.rb @@ -17,7 +17,12 @@ def initialize 'Author' => 'Btnz', 'License' => MSF_LICENSE, 'Disclosure Date' => '2020-10-01', - 'RelatedModules' => ['auxiliary/scanner/http/emby_ssrf_scanner'], + 'Notes' => { + 'Stability' => [], + 'SideEffects' => [], + 'Reliability' => [], + 'RelatedModules' => ['auxiliary/scanner/http/emby_ssrf_scanner'], + } 'References' => [ ['CVE', '2020-26948'], ['URL', 'https://github.com/btnz-k/emby_ssrf'] diff --git a/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb b/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb index 4354ebd728f0..2a0a58d887ce 100644 --- a/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb +++ b/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb @@ -59,7 +59,8 @@ def initialize(info = {}) 'AKA' => ['DOUBLEPULSAR'], 'RelatedModules' => ['exploit/windows/smb/smb_doublepulsar_rce'], 'Stability' => [CRASH_OS_DOWN], - 'Reliability' => [REPEATABLE_SESSION] + 'Reliability' => [REPEATABLE_SESSION], + 'SideEffects' => [] } )) diff --git a/modules/exploits/windows/smb/smb_doublepulsar_rce.rb b/modules/exploits/windows/smb/smb_doublepulsar_rce.rb index afaebfce3150..9184814f0c2c 100644 --- a/modules/exploits/windows/smb/smb_doublepulsar_rce.rb +++ b/modules/exploits/windows/smb/smb_doublepulsar_rce.rb @@ -78,6 +78,7 @@ def initialize(info = {}) ], 'Stability' => [CRASH_OS_DOWN], 'Reliability' => [REPEATABLE_SESSION] + 'SideEffects' => [] } )) From cd183194fd9e79e251f3b3e40145cde36e7baf49 Mon Sep 17 00:00:00 2001 From: h00die Date: Fri, 15 Sep 2023 16:40:22 -0400 Subject: [PATCH 2/4] fix related modules references --- modules/exploits/windows/smb/smb_doublepulsar_rce.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/exploits/windows/smb/smb_doublepulsar_rce.rb b/modules/exploits/windows/smb/smb_doublepulsar_rce.rb index 9184814f0c2c..5ad991697760 100644 --- a/modules/exploits/windows/smb/smb_doublepulsar_rce.rb +++ b/modules/exploits/windows/smb/smb_doublepulsar_rce.rb @@ -77,7 +77,7 @@ def initialize(info = {}) 'exploit/windows/smb/ms17_010_eternalblue' ], 'Stability' => [CRASH_OS_DOWN], - 'Reliability' => [REPEATABLE_SESSION] + 'Reliability' => [REPEATABLE_SESSION], 'SideEffects' => [] } )) From dd947d49cc4008e44e2c33a531877f04cbb983dc Mon Sep 17 00:00:00 2001 From: h00die Date: Fri, 15 Sep 2023 16:42:03 -0400 Subject: [PATCH 3/4] fix related modules references --- modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb b/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb index 2a0a58d887ce..01dccca84dbd 100644 --- a/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb +++ b/modules/exploits/windows/rdp/rdp_doublepulsar_rce.rb @@ -60,7 +60,7 @@ def initialize(info = {}) 'RelatedModules' => ['exploit/windows/smb/smb_doublepulsar_rce'], 'Stability' => [CRASH_OS_DOWN], 'Reliability' => [REPEATABLE_SESSION], - 'SideEffects' => [] + 'SideEffects' => [] } )) From 8d79d5afbddc452401e0674ad6a609b421b4d419 Mon Sep 17 00:00:00 2001 From: h00die Date: Mon, 18 Sep 2023 06:56:18 -0400 Subject: [PATCH 4/4] fix references --- modules/auxiliary/scanner/http/emby_ssrf_scanner.rb | 2 +- modules/auxiliary/scanner/http/emby_version_ssrf.rb | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb b/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb index 22febe9b1920..ea59362f6f82 100644 --- a/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb +++ b/modules/auxiliary/scanner/http/emby_ssrf_scanner.rb @@ -23,7 +23,7 @@ def initialize 'SideEffects' => [], 'Reliability' => [], 'RelatedModules' => ['auxiliary/scanner/http/emby_version_ssrf'], - } + }, 'References' => [ ['CVE', '2020-26948'], ['URL', 'https://github.com/btnz-k/emby_ssrf'] diff --git a/modules/auxiliary/scanner/http/emby_version_ssrf.rb b/modules/auxiliary/scanner/http/emby_version_ssrf.rb index 35876f92df31..2e998dcd750b 100644 --- a/modules/auxiliary/scanner/http/emby_version_ssrf.rb +++ b/modules/auxiliary/scanner/http/emby_version_ssrf.rb @@ -21,8 +21,8 @@ def initialize 'Stability' => [], 'SideEffects' => [], 'Reliability' => [], - 'RelatedModules' => ['auxiliary/scanner/http/emby_ssrf_scanner'], - } + 'RelatedModules' => ['auxiliary/scanner/http/emby_ssrf_scanner'], + }, 'References' => [ ['CVE', '2020-26948'], ['URL', 'https://github.com/btnz-k/emby_ssrf']