Land rapid7#4321, @wchen-r7's fixes rapid7#4246 ms01_026_dbldecode undef method

jvazquez-r7 · jvazquez-r7 · commit 655cfdd41602 · 2014-12-26T12:48:29.000-06:00
diff --git a/modules/exploits/windows/iis/ms01_026_dbldecode.rb b/modules/exploits/windows/iis/ms01_026_dbldecode.rb
@@ -196,12 +196,12 @@ def exploit
 
     # Save these file names for later deletion
     @exe_cmd_copy = exe_fname
-    @exe_payload = payload_exe
+    @exe_payload = stager_instance.payload_exe
 
     # Just for good measure, we'll make a quick, direct request for the payload
     # Using the "start" method doesn't seem to make iis very happy :(
     print_status("Triggering the payload via a direct request...")
-    mini_http_request({ 'uri' => '/scripts/' + payload_exe, 'method' => 'GET' }, 1)
+    mini_http_request({ 'uri' => '/scripts/' + stager_instance.payload_exe, 'method' => 'GET' }, 1)
 
     handler
 
