automatic module_metadata_base.json update

Author: jenkins-metasploit

db/modules_metadata_base.json

@@ -115003,7 +115003,7 @@
       "Stephane Chazelas",
       "egypt <[email protected]>"
     ],
-    "description": "This module exploits the Shellshock vulnerability, a flaw in how the Bash shell\n        handles external environment variables. This module targets dhclient by responding\n        to DHCP requests with a malicious hostname, domainname, and URL which are then\n        passed to the configuration scripts as environment variables, resulting in code\n        execution. Due to length restrictions and the unusual networking scenario at the\n        time of exploitation, this module achieves code execution by writing the payload\n        into /etc/crontab and then cleaning it up after a session is created.",
+    "description": "This module exploits the Shellshock vulnerability, a flaw in how the Bash shell\n          handles external environment variables. This module targets dhclient by responding\n          to DHCP requests with a malicious hostname, domainname, and URL which are then\n          passed to the configuration scripts as environment variables, resulting in code\n          execution. Due to length restrictions and the unusual networking scenario at the\n          time of exploitation, this module achieves code execution by writing the payload\n          into /etc/crontab and then cleaning it up after a session is created.",
     "references": [
       "CVE-2014-6271",
       "CWE-94",
@@ -115021,7 +115021,7 @@
     "targets": [
       "Automatic Target"
     ],
-    "mod_time": "2023-03-13 10:31:27 +0000",
+    "mod_time": "2025-05-07 00:22:34 +0000",
     "path": "/modules/exploits/unix/dhcp/bash_environment.rb",
     "is_install_path": true,
     "ref_name": "unix/dhcp/bash_environment",
@@ -115032,8 +115032,13 @@
       "Stability": [
         "crash-safe"
       ],
-      "SideEffects": [],
-      "Reliability": [],
+      "SideEffects": [
+        "ioc-in-logs",
+        "artifacts-on-disk"
+      ],
+      "Reliability": [
+        "repeatable-session"
+      ],
       "AKA": [
         "Shellshock"
       ]
@@ -115052,7 +115057,7 @@
       "Felix Wilhelm",
       "Kevin Kirsche <d3c3pt10n[AT]deceiveyour.team>"
     ],
-    "description": "This module exploits the DynoRoot vulnerability, a flaw in how the\n         NetworkManager integration script included in the DHCP client in\n         Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier\n         processes DHCP options. A malicious DHCP server, or an attacker on\n         the local network able to spoof DHCP responses, could use this flaw\n         to execute arbitrary commands with root privileges on systems using\n         NetworkManager and configured to obtain network configuration using\n         the DHCP protocol.",
+    "description": "This module exploits the DynoRoot vulnerability, a flaw in how the\n          NetworkManager integration script included in the DHCP client in\n          Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier\n          processes DHCP options. A malicious DHCP server, or an attacker on\n          the local network able to spoof DHCP responses, could use this flaw\n          to execute arbitrary commands with root privileges on systems using\n          NetworkManager and configured to obtain network configuration using\n          the DHCP protocol.",
     "references": [
       "CVE-2018-1111",
       "EDB-44652",
@@ -115071,7 +115076,7 @@
     "targets": [
       "Automatic Target"
     ],
-    "mod_time": "2023-03-13 10:31:27 +0000",
+    "mod_time": "2025-05-07 00:22:34 +0000",
     "path": "/modules/exploits/unix/dhcp/rhel_dhcp_client_command_injection.rb",
     "is_install_path": true,
     "ref_name": "unix/dhcp/rhel_dhcp_client_command_injection",
@@ -115082,8 +115087,12 @@
       "Stability": [
         "crash-safe"
       ],
-      "SideEffects": [],
-      "Reliability": [],
+      "SideEffects": [
+        "ioc-in-logs"
+      ],
+      "Reliability": [
+        "repeatable-session"
+      ],
       "AKA": [
         "DynoRoot"
       ]