github/metasploit-framework
1
Fork 0
mirror of https://github.com/rapid7/metasploit-framework synced 2024-11-12 11:52:01 +01:00
Code Releases Activity

Allow local_editor in cmd_edit to take arguments

Browse Source 
Such as vim -i NONE. This may allow command injection via arguments.
However, you can already start an arbitrary program by setting
LocalEditor or escaping the editor.

msf > setg LocalEditor /bin/sh
LocalEditor => /bin/sh
msf > edit -i
[*] Launching /bin/sh -i
$
This commit is contained in:
William Vu 2017-12-14 19:21:33 -06:00
parent 234ef5627e
commit 0a1eea9860
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lib/msf/ui/console/command_dispatcher/modules.rb
View File

@ -92,7 +92,7 @@ module Msf
end
print_status("Launching #{editor} #{path}")
system(editor, path)
system(*editor.split, path)
# XXX: This will try to reload *any* .rb and break on modules
if args.length > 0 && path.end_with?('.rb')