Fix indentation
This commit is contained in:
parent
d73531c0d3
commit
e4e6f5daac
|
@ -13,8 +13,8 @@ class MetasploitModule < Msf::Auxiliary
|
||||||
|
|
||||||
def initialize
|
def initialize
|
||||||
super(
|
super(
|
||||||
'Name' => 'Tomcat UTF-8 Directory Traversal Vulnerability',
|
'Name' => 'Tomcat UTF-8 Directory Traversal Vulnerability',
|
||||||
'Description' => %q{
|
'Description' => %q{
|
||||||
This module tests whether a directory traversal vulnerablity is present
|
This module tests whether a directory traversal vulnerablity is present
|
||||||
in versions of Apache Tomcat 4.1.0 - 4.1.37, 5.5.0 - 5.5.26 and 6.0.0
|
in versions of Apache Tomcat 4.1.0 - 4.1.37, 5.5.0 - 5.5.26 and 6.0.0
|
||||||
- 6.0.16 under specific and non-default installations. The connector must have
|
- 6.0.16 under specific and non-default installations. The connector must have
|
||||||
|
@ -25,15 +25,15 @@ class MetasploitModule < Msf::Auxiliary
|
||||||
RedHat 9 running Tomcat 6.0.16 and Sun JRE 1.5.0-05. You may wish to change
|
RedHat 9 running Tomcat 6.0.16 and Sun JRE 1.5.0-05. You may wish to change
|
||||||
FILE (hosts,sensitive files), MAXDIRS and RPORT depending on your environment.
|
FILE (hosts,sensitive files), MAXDIRS and RPORT depending on your environment.
|
||||||
},
|
},
|
||||||
'References' =>
|
'References' =>
|
||||||
[
|
[
|
||||||
[ 'URL', 'http://tomcat.apache.org/' ],
|
[ 'URL', 'http://tomcat.apache.org/' ],
|
||||||
[ 'OSVDB', '47464' ],
|
[ 'OSVDB', '47464' ],
|
||||||
[ 'CVE', '2008-2938' ],
|
[ 'CVE', '2008-2938' ],
|
||||||
[ 'URL', 'http://www.securityfocus.com/archive/1/499926' ],
|
[ 'URL', 'http://www.securityfocus.com/archive/1/499926' ],
|
||||||
],
|
],
|
||||||
'Author' => [ 'patrick','guerrino <ruggine> di massa' ],
|
'Author' => [ 'patrick','guerrino <ruggine> di massa' ],
|
||||||
'License' => MSF_LICENSE,
|
'License' => MSF_LICENSE,
|
||||||
'DisclosureDate' => 'Jan 9 2009'
|
'DisclosureDate' => 'Jan 9 2009'
|
||||||
)
|
)
|
||||||
|
|
||||||
|
|
|
@ -12,8 +12,8 @@ class MetasploitModule < Msf::Auxiliary
|
||||||
|
|
||||||
def initialize
|
def initialize
|
||||||
super(
|
super(
|
||||||
'Name' => 'TrendMicro Data Loss Prevention 5.5 Directory Traversal',
|
'Name' => 'TrendMicro Data Loss Prevention 5.5 Directory Traversal',
|
||||||
'Description' => %q{
|
'Description' => %q{
|
||||||
This module tests whether a directory traversal vulnerablity is present
|
This module tests whether a directory traversal vulnerablity is present
|
||||||
in Trend Micro DLP (Data Loss Prevention) Appliance v5.5 build <= 1294.
|
in Trend Micro DLP (Data Loss Prevention) Appliance v5.5 build <= 1294.
|
||||||
The vulnerability appears to be actually caused by the Tomcat UTF-8
|
The vulnerability appears to be actually caused by the Tomcat UTF-8
|
||||||
|
@ -22,7 +22,7 @@ class MetasploitModule < Msf::Auxiliary
|
||||||
Note that in the Trend Micro appliance, /etc/shadow is not used and therefore
|
Note that in the Trend Micro appliance, /etc/shadow is not used and therefore
|
||||||
password hashes are stored and anonymously accessible in the passwd file.
|
password hashes are stored and anonymously accessible in the passwd file.
|
||||||
},
|
},
|
||||||
'References' =>
|
'References' =>
|
||||||
[
|
[
|
||||||
[ 'URL', 'http://tomcat.apache.org/' ],
|
[ 'URL', 'http://tomcat.apache.org/' ],
|
||||||
[ 'OSVDB', '47464' ],
|
[ 'OSVDB', '47464' ],
|
||||||
|
@ -32,8 +32,8 @@ class MetasploitModule < Msf::Auxiliary
|
||||||
[ 'EDB', '17388' ],
|
[ 'EDB', '17388' ],
|
||||||
[ 'BID', '48225' ],
|
[ 'BID', '48225' ],
|
||||||
],
|
],
|
||||||
'Author' => [ 'patrick' ],
|
'Author' => [ 'patrick' ],
|
||||||
'License' => MSF_LICENSE,
|
'License' => MSF_LICENSE,
|
||||||
'DisclosureDate' => 'Jan 9 2009'
|
'DisclosureDate' => 'Jan 9 2009'
|
||||||
)
|
)
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue