github/metasploit-framework
1
Fork 0
mirror of https://github.com/rapid7/metasploit-framework synced 2024-10-29 18:07:27 +01:00
Code Releases Activity

Don't allow 127.0.0.1 as SRVHOST

Browse Source
This commit is contained in:
jvazquez-r7 2014-10-31 08:19:15 -05:00
parent 7d2fa9ee94
commit 40bf44bd05
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
modules/exploits/freebsd/misc/citrix_netscaler_soap_bof.rb
View File

@ -88,8 +88,8 @@ class Metasploit3 < Msf::Exploit::Remote
end
def exploit
if datastore['SRVHOST'] == '0.0.0.0'
fail_with(Failure::BadConfig, 'Don\'t use 0.0.0.0 as SRVHOST, use an address on the local machine reachable by the target')
if ['0.0.0.0', '127.0.0.1'].include?(datastore['SRVHOST'])
fail_with(Failure::BadConfig, 'Bad SRVHOST, use an address on the local machine reachable by the target')
end
if check != Exploit::CheckCode::Detected