2 void-in fixes of 3

h00die · h00die · commit 3f25c27e34b9 · 2016-06-19T14:35:27.000-04:00
diff --git a/modules/exploits/linux/http/tiki_calendar_exec.rb b/modules/exploits/linux/http/tiki_calendar_exec.rb
@@ -15,7 +15,7 @@ def initialize(info = {})
         info,
         'Name'        => 'Tiki-Wiki CMS Calendar Command Execution',
         'Description' => %q(
-          Tiki-Wiki CMS's calendar module contains a rmeote code execution
+          Tiki-Wiki CMS's calendar module contains a remote code execution
           vulnerability within the viewmode GET parameter.
           The calendar module is NOT enabled by default.  When enbled,
           the default permissions are set to NOT allow anonymous users
@@ -64,7 +64,7 @@ def authenticate
         'uri'       => normalize_uri(target_uri.path, 'tiki-login_scr.php'),
         'method'    => 'GET'
       )
-      cookie = res.get_cookies
+      cookie = res ? res.get_cookies : ''
       # if we have creds, login with them
       vprint_status('Attempting Login')
       res = send_request_cgi(
