File tree Expand file tree Collapse file tree 1 file changed +2
-2
lines changed
modules/exploits/linux/http Expand file tree Collapse file tree 1 file changed +2
-2
lines changed Original file line number Diff line number Diff line change @@ -122,7 +122,7 @@ def check
122122 return CheckCode ::Safe ( 'The target did not respond with a 200 OK or 500 error' ) unless ( res . code == 200 || res . code == 500 )
123123
124124 # Some cameras are not vulnerable and still respond 500. We can weed them out by making
125- # the remote target sleep and use a low timeout. This might not be good for low latency targets
125+ # the remote target sleep and use a low timeout. This might not be good for high latency targets
126126 # or for people using Metasploit as a vulnerability scanner... but it's better than flagging all
127127 # 500 responses as vulnerable.
128128 payload = '<xml><language>$(sleep 20)</language></xml>'
@@ -132,7 +132,7 @@ def check
132132 'data' => payload
133133 } , 10 )
134134
135- return CheckCode ::Vulnerable ( 'It appears the target executed the provided sleep command.' ) unless res
135+ return CheckCode ::Appears ( 'It appears the target executed the provided sleep command.' ) unless res
136136
137137 CheckCode ::Safe ( 'The target did not execute the provided sleep command.' )
138138 end
You can’t perform that action at this time.
0 commit comments