Skip to content

exploit/multi/local/periodic_script_persistence: Unset DefaultTarget #20611

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Oct 13, 2025
Merged

exploit/multi/local/periodic_script_persistence: Unset DefaultTarget #20611

merged 1 commit into from
Oct 13, 2025

Conversation

bcoles
Copy link
Contributor

@bcoles bcoles commented Oct 11, 2025

The exploit/multi/local/periodic_script_persistence module sets an invalid target index within the DefaultTarget option.

metasploit-framework/modules/exploits/multi/local/periodic_script_persistence.rb

Lines 37 to 46 in 55bb277

'Targets' => [
[ 'OSX', { 'Arch' => [ARCH_X64, ARCH_X86, ARCH_AARCH64], 'Platform' => 'osx' } ],
[ 'Python', { 'Arch' => ARCH_PYTHON, 'Platform' => 'python' } ],
[ 'Unix', { 'Arch' => ARCH_CMD, 'Platform' => 'unix' } ],
[ 'Bsd', { 'Arch' => [ARCH_X86, ARCH_X64], 'Platform' => 'bsd' }]
],
'DefaultOptions' => {
'DisablePayloadHandler' => true
},
'DefaultTarget' => 4,

Targets are zero-indexed. As such, 4 is an invalid target index.

This caused issues with the Local Exploit Suggester (#20609).

I'm not sure why 4 (presumably 3) was chosen as the default target. This target does not perform automatic targeting and is not a safe default target for all platforms.

This PR removes the default DefaultTarget value, forcing the operator to knowingly and intentionally chose a target.

@bcoles bcoles added the bug label Oct 11, 2025
This was referenced Oct 11, 2025
Closed
Closed
Closed
Open
@github-project-automation github-project-automation bot moved this from Todo to In Progress in Metasploit Kanban Oct 13, 2025
@adfoster-r7 adfoster-r7 merged commit fcb469b into rapid7:master Oct 13, 2025
19 checks passed
@adfoster-r7 adfoster-r7 added the rn-fix release notes fix label Oct 13, 2025
@github-project-automation github-project-automation bot moved this from In Progress to Done in Metasploit Kanban Oct 13, 2025
@adfoster-r7
Copy link
Contributor

Release Notes

Fixes a bug in the exploit/multi/local/periodic_script_persistence module which caused issues for the Local Exploit Suggester

@bcoles bcoles deleted the periodic_script_persistence branch October 13, 2025 22:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@adfoster-r7 adfoster-r7 adfoster-r7 approved these changes

Assignees

No one assigned

Labels

bug hacktoberfest-accepted rn-fix release notes fix

Projects

Metasploit Kanban
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@bcoles @adfoster-r7