Add missing ranks

farkwun · farkwun · commit 5e31a32771c3 · 2017-03-31T02:39:44.000-04:00
../exec_shellcode.rb
Rank = Great
This exploit is missing autodetection and version checks,
but should be ranked Great due to high number of possible targets

../cfme_manageiq_evm_upload_exec.rb
Rank = Great
This exploit implements a check to assess target availability,
and the vulnerability does not require any user action

../dlink_dcs_930l_authenticated_remote_command_execution
Rank = Excellent
Exploit utilizes command injection

../efw_chpasswd_exec
Rank = Excellent
Exploit utilizes command injection

../foreman_openstack_satellite_code_exec
Rank = Excellent
Exploit utilizes code injection

../nginx_chunked_size
Rank = Great
Exploit has explicit targets with nginx version auto-detection

../tp_link_sc2020n_authenticated_telnet_injection
Rank = Excellent
See dlink_dcs_930l_authenticated_remote_command_execution,
exploit uses OS Command Injection

../hp_smhstart
Rank = Average
Must be specific user to exploit, no autodetection,
specific versions only
diff --git a/modules/exploits/firefox/local/exec_shellcode.rb b/modules/exploits/firefox/local/exec_shellcode.rb
@@ -7,6 +7,7 @@
 require 'msf/core/payload/firefox'
 
 class MetasploitModule < Msf::Exploit::Local
+  Rank = GreatRanking # Missing autodetection, but has widespread targetability
 
   include Msf::Payload::Firefox
   include Msf::Exploit::Remote::FirefoxPrivilegeEscalation
diff --git a/modules/exploits/linux/http/cfme_manageiq_evm_upload_exec.rb b/modules/exploits/linux/http/cfme_manageiq_evm_upload_exec.rb
@@ -6,6 +6,7 @@
 require 'msf/core'
 
 class MetasploitModule < Msf::Exploit::Remote
+  Rank = GreatRanking
 
   include Msf::Exploit::Remote::HttpClient
   include Msf::Exploit::FileDropper
diff --git a/modules/exploits/linux/http/dlink_dcs_930l_authenticated_remote_command_execution.rb b/modules/exploits/linux/http/dlink_dcs_930l_authenticated_remote_command_execution.rb
@@ -6,6 +6,7 @@
 require 'msf/core'
 
 class MetasploitModule < Msf::Exploit::Remote
+  Rank = ExcellentRanking
 
   include Msf::Exploit::Remote::Telnet
   include Msf::Exploit::Remote::HttpClient
diff --git a/modules/exploits/linux/http/efw_chpasswd_exec.rb b/modules/exploits/linux/http/efw_chpasswd_exec.rb
@@ -6,6 +6,7 @@
 require 'msf/core'
 
 class MetasploitModule < Msf::Exploit::Remote
+  Rank = ExcellentRanking
 
   include Msf::Exploit::Remote::HttpClient
   include Msf::Exploit::CmdStager
diff --git a/modules/exploits/linux/http/foreman_openstack_satellite_code_exec.rb b/modules/exploits/linux/http/foreman_openstack_satellite_code_exec.rb
@@ -6,6 +6,7 @@
 require 'msf/core'
 
 class MetasploitModule < Msf::Exploit::Remote
+  Rank = ExcellentRanking
 
   include Msf::Exploit::Remote::HttpClient
 
diff --git a/modules/exploits/linux/http/nginx_chunked_size.rb b/modules/exploits/linux/http/nginx_chunked_size.rb
@@ -6,6 +6,7 @@
 require 'msf/core'
 
 class MetasploitModule < Msf::Exploit::Remote
+  Rank = GreatRanking
 
   include Exploit::Remote::Tcp
 
diff --git a/modules/exploits/linux/http/tp_link_sc2020n_authenticated_telnet_injection.rb b/modules/exploits/linux/http/tp_link_sc2020n_authenticated_telnet_injection.rb
@@ -6,6 +6,7 @@
 require 'msf/core'
 
 class MetasploitModule < Msf::Exploit::Remote
+  Rank = ExcellentRanking
 
     include Msf::Exploit::Remote::Telnet
     include Msf::Exploit::Remote::HttpClient
diff --git a/modules/exploits/linux/local/hp_smhstart.rb b/modules/exploits/linux/local/hp_smhstart.rb
@@ -9,6 +9,7 @@
 require 'msf/core/exploit/exe'
 
 class MetasploitModule < Msf::Exploit::Local
+  Rank = AverageRanking
 
   include Msf::Exploit::EXE
   include Msf::Post::File
