Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix AMT scanner for mangled HTML (no </p>) #8558

Merged
merged 1 commit into from Jun 16, 2017
Merged

Fix AMT scanner for mangled HTML (no </p>) #8558

merged 1 commit into from Jun 16, 2017

Conversation

wvu
Copy link
Contributor

@wvu wvu commented Jun 14, 2017
edited

This expands the Intel Advanced Management Technology (AMT) module to deal with the HTML output from more ME firmware versions. Not all present well-formed HTML, leading to missing data.

Props to @busterb for helping. Unfixed output below.

msf auxiliary(intel_amt_digest_bypass) > run

[*] [redacted]:16992 - Found an Intel AMT endpoint: Intel(R) Active Management Technology [redacted]
[+] [redacted]:16992 - Vulnerable to CVE-2017-5869 nil
[*] Scanned 1 of 1 hosts (100% complete)
[*] Auxiliary module execution completed
msf auxiliary(intel_amt_digest_bypass) >

#8353

@wvu
Fix AMT scanner for mangled HTML (no </p>)
549f9e7 
Also stores proof using the correct :info for report_vuln (not :proof).
@busterb
Copy link
Member

busterb commented Jun 16, 2017

sehr schön, danke!

@busterb busterb merged commit 549f9e7 into rapid7:master Jun 16, 2017
busterb pushed a commit that referenced this pull request Jun 16, 2017
Land #8558, Fix AMT scanner when parsing mangled HTML
53253bf
@wvu wvu deleted the bug/amt branch June 16, 2017 01:43
@busterb
Copy link
Member

busterb commented Jun 16, 2017
edited by alrosenthal-r7

Release Notes

This fix expands the Intel Advanced Management Technology (AMT) credential-bypass scanner module to deal with the HTML output from more ME firmware versions. Not all versions present well-formed HTML, leading to missing data in the module prior to this fix.

@alrosenthal-r7 alrosenthal-r7 added the rn-fix release notes fix label Jun 28, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@busterb busterb

Labels
bug module rn-fix release notes fix
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@wvu @busterb @alrosenthal-r7