Land rapid7#6853, use send_request_cgi! for CVE-2016-0854 exploit

wchen-r7 · wchen-r7 · commit 3db72e9b4b23 · 2016-05-09T16:10:04.000-05:00
diff --git a/modules/exploits/windows/scada/advantech_webaccess_dashboard_file_upload.rb b/modules/exploits/windows/scada/advantech_webaccess_dashboard_file_upload.rb
@@ -56,18 +56,11 @@ def version_match(data)
   end
 
   def vuln_version?
-    res = send_request_cgi(
+    res = send_request_cgi!(
       'method'   => 'GET',
       'uri'      => target_uri.to_s
     )
 
-    if res.redirect?
-      res = send_request_cgi(
-        'method' => 'GET',
-        'uri'    => normalize_uri(res.redirection)
-      )
-    end
-
     ver = res && res.body ? version_match(res.body) : nil
     true ? Gem::Version.new(ver) == Gem::Version.new('8.0') : false
   end
@@ -128,4 +121,3 @@ def exploit
     return unless exec_file?(filename)
   end
 end
-
