Add new vuln for proftpd mod_copy

2017-03-23 13:06:48 -05:00 · 2017-03-23 13:06:48 -05:00 · 6549e398bc
parent 3566e9f009
commit 6549e398bc
4 changed files with 74 additions and 0 deletions
--- a/1
+++ b/1
@ -155,6 +155,7 @@ Vagrant.configure("2") do |config|
      chef.add_recipe "metasploitable::apache"
      chef.add_recipe "metasploitable::php_545"
      chef.add_recipe "metasploitable::phpmyadmin"
+      chef.add_recipe "metasploitable::proftpd"
      chef.add_recipe "metasploitable::users"
    end
  end
--- a/chef/cookbooks/metasploitable/files/proftpd/proftpd
+++ b/chef/cookbooks/metasploitable/files/proftpd/proftpd
@ -0,0 +1,39 @@
+#!/bin/sh
+### BEGIN INIT INFO
+# Provides:          proftpd
+# Required-Start:    $local_fs
+# Required-Stop:     $local_fs
+# Default-Start:     2 3 4 5
+# Default-Stop:      0 1 6
+# X-Interactive:     false
+# Short-Description: Init script for proftpd
+# Description:       Start/stop proftpd
+### END INIT INFO
+
+DESC="proftpd"
+NAME=proftpd
+#DAEMON=
+
+do_start()
+{
+   echo "Starting proftpd.";
+   /opt/proftpd/sbin/proftpd
+}
+
+do_stop()
+{
+   echo "Stopping proftpd."
+   killall proftpd
+}
+
+
+case "$1" in
+   start)
+     do_start
+     ;;
+   stop)
+     do_stop
+     ;;
+esac
+
+exit 0
--- a/chef/cookbooks/metasploitable/recipes/apache.rb
+++ b/chef/cookbooks/metasploitable/recipes/apache.rb
@ -39,6 +39,10 @@ execute 'disable-serve-cgi-bin-conf' do
  command 'a2disconf serve-cgi-bin'
 end

+execute 'make /var/www/html writeable' do
+  command 'chmod o+w /var/www/html'
+end
+
 service 'apache2' do
  action [:enable, :start]
 end
--- a/chef/cookbooks/metasploitable/recipes/proftpd.rb
+++ b/chef/cookbooks/metasploitable/recipes/proftpd.rb
@ -0,0 +1,30 @@
+#
+# Cookbook:: proftpd
+# Recipe:: phpmyadmin
+#
+# Copyright:: 2017, Rapid7, All Rights Reserved.
+
+# Install steps taken from https://github.com/rapid7/metasploit-framework/pull/5224
+
+include_recipe 'metasploitable::apache'
+
+bash "download, extract, and compile proftpd" do
+  code <<-EOH
+    cd /home/vagrant
+    wget "ftp://ftp.proftpd.org/distrib/source/proftpd-1.3.5.tar.gz"
+    tar zxfv proftpd-1.3.5.tar.gz
+    cd proftpd-1.3.5
+    ./configure --prefix=/opt/proftpd --with-modules=mod_copy
+    make
+    make install
+  EOH
+end
+
+cookbook_file '/etc/init.d/proftpd' do
+  source 'proftpd/proftpd'
+  mode '760'
+end
+
+service 'proftpd' do
+  action [:enable, :start]
+end