Land rapid7#7446, Update Capcom exploit module to support Windows 10

wwebb-r7 · wwebb-r7 · commit 260257a144d1 · 2016-10-17T14:57:21.000-05:00
diff --git a/modules/exploits/windows/local/capcom_sys_exec.rb b/modules/exploits/windows/local/capcom_sys_exec.rb
@@ -22,7 +22,7 @@ def initialize(info={})
         This module abuses the Capcom.sys kernel driver's function that allows for an
         arbitrary function to be executed in the kernel from user land. This function
         purposely disables SMEP prior to invoking a function given by the caller.
-        This has been tested on Windows 7 x64.
+        This has been tested on Windows 7, 8.1 and Windows 10 (x64).
       },
       'License'         => MSF_LICENSE,
       'Author'          => [
@@ -36,7 +36,7 @@ def initialize(info={})
           'EXITFUNC'    => 'thread',
         },
       'Targets'         => [
-          [ 'Windows x64 (<= 8)', { 'Arch' => ARCH_X86_64 } ]
+          [ 'Windows x64 (<= 10)', { 'Arch' => ARCH_X86_64 } ]
         ],
       'Payload'         => {
           'Space'       => 4096,
@@ -51,7 +51,7 @@ def initialize(info={})
   end
 
   def check
-    if sysinfo['OS'] !~ /windows (7|8)/i
+    if sysinfo['OS'] !~ /windows (7|8|10)/i
       return Exploit::CheckCode::Unknown
     end
 
