Land rapid7#4753, updated ms14_070_tcpip_ioctl info

wvu · wvu · commit 309159d87636 · 2015-02-12T09:57:29.000-06:00
diff --git a/modules/exploits/windows/local/ms14_070_tcpip_ioctl.rb b/modules/exploits/windows/local/ms14_070_tcpip_ioctl.rb
@@ -18,11 +18,11 @@ class Metasploit3 < Msf::Exploit::Local
 
   def initialize(info={})
     super(update_info(info, {
-      'Name'           => 'Windows tcpip.sys Arbitrary Write Privilege Escalation',
+      'Name'           => 'Windows tcpip!SetAddrOptions NULL Pointer Dereference',
       'Description'    => %q{
         A vulnerability within the Microsoft TCP/IP protocol driver tcpip.sys,
-        can allow an attacker to inject controlled memory into an arbitrary
-        location within the kernel.
+        can allow an attacker to trigger a NULL pointer dereference by using a
+        specially crafted IOCTL.
       },
       'License'       => MSF_LICENSE,
       'Author'        =>
@@ -51,6 +51,9 @@ def initialize(info={})
       'References'    =>
         [
           ['CVE', '2014-4076'],
+          ['MSB', 'MS14-070'],
+          ['OSVDB', '114532'],
+          ['URL', 'https://blog.korelogic.com/blog/2015/01/28/2k3_tcpip_setaddroptions_exploit_dev'],
           ['URL', 'https://www.korelogic.com/Resources/Advisories/KL-001-2015-001.txt']
         ],
       'DisclosureDate'=> 'Nov 11 2014',
