Adds more robust check method

msutovsky-r7 · msutovsky-r7 · commit f9b8a9b95ea5 · 2025-08-28T09:11:01.000+02:00
diff --git a/modules/exploits/osx/misc/remote_for_mac_udp_rce.rb b/modules/exploits/osx/misc/remote_for_mac_udp_rce.rb
@@ -1,11 +1,14 @@
-require 'json'
-require 'socket'
+##
+# This module requires Metasploit: https://metasploit.com/download
+# Current source: https://github.com/rapid7/metasploit-framework
+##
 
 class MetasploitModule < Msf::Exploit::Remote
   Rank = ExcellentRanking
 
   include Msf::Exploit::Remote::HttpClient
   include Msf::Exploit::Remote::Udp
+  prepend Msf::Exploit::Remote::AutoCheck
 
   def initialize(info = {})
     super(
@@ -21,7 +24,7 @@ def initialize(info = {})
         'Author' => ['Chokri Hammedi'],
         'License' => MSF_LICENSE,
         'References' => [
-          ['URL', 'https://packetstorm.news/files/id/196351/']
+          ['PACKETSTORM', '196351']
         ],
         'Platform' => 'unix',
         'Arch' => ARCH_CMD,
@@ -59,9 +62,18 @@ def check
     json_body = res.get_json_document
     auth_enabled = json_body.fetch('requires.auth', nil)
 
-    return CheckCode::Appears('Authentication is disabled, target is vulnerable') if auth_enabled == 'false'
+    return CheckCode::Detected('Remote For Mac detected, but authentication enabled') unless auth_enabled.to_s == 'false'
 
-    CheckCode::Detected('Remote For Mac detected, but authentication enabled')
+    version = json_body.fetch('version').to_s
+
+    return CheckCode::Unknown('Could not determine target version') if version.empty?
+
+    target_version = Rex::Version.new(version)
+    vulnerable_version = Rex::Version.new('2025.7')
+
+    return CheckCode::Appears("Detected vulnerable version #{version} with authentication disabled") if target_version <= vulnerable_version
+
+    CheckCode::Safe("Target version #{version} is not vulnerable")
   end
 
   def exploit
