More Fixes for WD MyBook Live Scanner

Fixes include removing deregistered options from credentials collection object and adding proof when there is no response
2024-10-29 18:07:27 +01:00 · 2014-10-22 03:06:21 +00:00 · 2014-10-22 03:06:21 +00:00 · ee3dd3a2ac
commit ee3dd3a2ac
parent 82b74d5f3c
2 changed files with 2 additions and 5 deletions
--- a/lib/metasploit/framework/login_scanner/mybook_live.rb
+++ b/lib/metasploit/framework/login_scanner/mybook_live.rb
@ -45,7 +45,7 @@ module Metasploit
            if res && res.code == 302 && res.headers['location'] && res.headers['location'].include?('UI')
              result_opts.merge!(status: Metasploit::Model::Login::Status::SUCCESSFUL, proof: res.headers)
            elsif res.nil?
-              result_opts.merge!(status: Metasploit::Model::Login::Status::INCORRECT)
+              result_opts.merge!(status: Metasploit::Model::Login::Status::INCORRECT, proof: 'No response')
            else
              result_opts.merge!(status: Metasploit::Model::Login::Status::INCORRECT, proof: res.headers)
            end
--- a/modules/auxiliary/scanner/http/mybook_live_login.rb
+++ b/modules/auxiliary/scanner/http/mybook_live_login.rb
@ -37,10 +37,7 @@ class Metasploit3 < Msf::Auxiliary
            blank_passwords: datastore['BLANK_PASSWORDS'],
            pass_file: datastore['PASS_FILE'],
            password: datastore['PASSWORD'],
-            user_file: datastore['USER_FILE'],
-            userpass_file: datastore['USERPASS_FILE'],
-            username: 'admin',
-            user_as_pass: datastore['USER_AS_PASS']
+            username: 'admin'
    )

    scanner = Metasploit::Framework::LoginScanner::MyBookLive.new(