Pass #send in this so jsobfu is not confused.

jvennix-r7 · jvennix-r7 · commit 5d234c0e0141 · 2014-09-24T15:07:14.000-05:00
diff --git a/lib/msf/core/payload/firefox.rb b/lib/msf/core/payload/firefox.rb
@@ -121,12 +121,14 @@ def run_cmd_source
           var retVal = null;
 
           try {
-            retVal = Function('send', js[1])(function(r){
-              if (sent) return;
-              sent = true;
-              if (r) {
-                if (sync) setTimeout(function(){ cb(false, r+tag+"\\n"); });
-                else      cb(false, r+tag+"\\n");
+            retVal = Function(js[1]).call({
+              send: function(r){
+                if (sent) return;
+                sent = true;
+                if (r) {
+                  if (sync) setTimeout(function(){ cb(false, r+tag+"\\n"); });
+                  else      cb(false, r+tag+"\\n");
+                }
               }
             });
           } catch (e) { retVal = e.message; }
diff --git a/modules/post/firefox/gather/cookies.rb b/modules/post/firefox/gather/cookies.rb
@@ -62,7 +62,7 @@ def js_payload
         } catch (e) {
           send(e);
         }
-      })(send);
+      })(this.send);
     |.strip
   end
 end
diff --git a/modules/post/firefox/gather/history.rb b/modules/post/firefox/gather/history.rb
@@ -80,7 +80,7 @@ def js_payload
         } catch (e) {
           send(e);
         }
-      })(send);
+      })(this.send);
     |.strip
   end
 end
diff --git a/modules/post/firefox/gather/passwords.rb b/modules/post/firefox/gather/passwords.rb
@@ -79,7 +79,7 @@ def js_payload
         } catch (e) {
           send(e);
         }
-      })(send);
+      })(this.send);
     |.strip
   end
 end
diff --git a/modules/post/firefox/gather/xss.rb b/modules/post/firefox/gather/xss.rb
@@ -78,7 +78,7 @@ def js_payload
         };
 
         setTimeout(evt, 200);
-      })(send);
+      })(this.send);
 
     |.strip
   end
diff --git a/modules/post/firefox/manage/webcam_chat.rb b/modules/post/firefox/manage/webcam_chat.rb
@@ -105,7 +105,7 @@ def js_payload(server, offerer_id, channel)
         } catch (e) {
           send(e);
         }
-      })(send);
+      })(this.send);
     |
   end
 

Original file line number	Diff line number	Diff line change
`@@ -62,7 +62,7 @@ def js_payload`
`62`	`62`	`} catch (e) {`
`63`	`63`	`send(e);`
`64`	`64`	`}`
`65`		`- })(send);`
	`65`	`+ })(this.send);`
`66`	`66`	`\|.strip`
`67`	`67`	`end`
`68`	`68`	`end`
Original file line number	Diff line number	Diff line change
`@@ -80,7 +80,7 @@ def js_payload`
`80`	`80`	`} catch (e) {`
`81`	`81`	`send(e);`
`82`	`82`	`}`
`83`		`- })(send);`
	`83`	`+ })(this.send);`
`84`	`84`	`\|.strip`
`85`	`85`	`end`
`86`	`86`	`end`
Original file line number	Diff line number	Diff line change
`@@ -79,7 +79,7 @@ def js_payload`
`79`	`79`	`} catch (e) {`
`80`	`80`	`send(e);`
`81`	`81`	`}`
`82`		`- })(send);`
	`82`	`+ })(this.send);`
`83`	`83`	`\|.strip`
`84`	`84`	`end`
`85`	`85`	`end`
Original file line number	Diff line number	Diff line change
`@@ -105,7 +105,7 @@ def js_payload(server, offerer_id, channel)`
`105`	`105`	`} catch (e) {`
`106`	`106`	`send(e);`
`107`	`107`	`}`
`108`		`- })(send);`
	`108`	`+ })(this.send);`
`109`	`109`	`\|`
`110`	`110`	`end`
`111`	`111`