-
Notifications
You must be signed in to change notification settings - Fork 13.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
address cmd_exec inconsistencies with mettle/meterpreter payloads #9438
Conversation
Changes appears to work as described.
I'll assume your Output, with Fedora 20 x64 test client:
|
Thanks for testing @bcoles , now on to the PHP payload :P The CachedSize integers are generated by a script, and for legacy reasons, our spec tests are sticklers about those. I put those changes in a separate commit to make review easier. Let me noodle on a better way we might be able to solve the problem CachedSize solves, because I do feel like we're wasting time valuable time as humans every time we update them. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Sometimes a rational fix devolves into a game of whackamole to find all the workarounds previously implemented... Thanks.
if d == "" | ||
if (Time.now.to_i - start < time_out) && (o == '') |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Seriously? Thank you...
Release NotesThis fix resolves issues with the cmd_exec command behaving inconsistently with Meterpreter versus shell payloads. It also resolves some reverse_http issues when reconnecting via Linux/OSX native Meterpreter. |
Fixes #9429
This attempts to address the inconsistent behavior. Test cases are in the original issue.
@bcoles would you mind giving this a quick pass? Thanks!
This took a little while to push up, had some interesting CI corner cases that had to be fixed first. This should also fix the crash observed when running the new 'rename process' functionality from an injected process.