224 pages of spelling issues left

Author: h00die

modules/exploits/windows/browser/ms06_013_createtextrange.rb

@@ -13,7 +13,7 @@ def initialize(info = {})
       'Name'           => 'MS06-013 Microsoft Internet Explorer createTextRange() Code Execution',
       'Description'    => %q{
           This module exploits a code execution vulnerability in Microsoft Internet Explorer.
-        Both IE6 and IE7 (Beta 2) are vulnerable. It will corrupt memory  in a way, which, under
+        Both IE6 and IE7 (Beta 2) are vulnerable. It will corrupt memory in a way, which, under
         certain circumstances, can lead to an invalid/corrupt table pointer dereference. EIP will point
         to a very remote, non-existent memory location. This module is the result of merging three
         different exploit submissions and has only been reliably tested against Windows XP SP2.

modules/exploits/windows/browser/ms06_071_xml_core.rb

@@ -13,7 +13,7 @@ def initialize(info = {})
       'Name'           => 'MS06-071 Microsoft Internet Explorer XML Core Services HTTP Request Handling',
       'Description'    => %q{
           This module exploits a code execution vulnerability in Microsoft XML Core Services which
-        exists in the XMLHTTP ActiveX control. This module is the modifed version of
+        exists in the XMLHTTP ActiveX control. This module is the modified version of
         http://www.milw0rm.com/exploits/2743 - credit to str0ke. This module has been successfully
         tested on Windows 2000 SP4, Windows XP SP2, Windows 2003 Server SP0 with IE6
         + Microsoft XML Core Services 4.0 SP2.

modules/exploits/windows/browser/ms10_022_ie_vbscript_winhlp32.rb

@@ -18,7 +18,7 @@ def initialize(info = {})
       'Description'    => %q{
           This module exploits a code execution vulnerability that occurs when a user
         presses F1 on MessageBox originated from VBscript within a web page. When the
-        user hits F1, the MessageBox help functionaility will attempt to load and use
+        user hits F1, the MessageBox help functionality will attempt to load and use
         a HLP file from an SMB or WebDAV (if the WebDAV redirector is enabled) server.
 
         This particular version of the exploit implements a WebDAV server that will

modules/exploits/windows/browser/ms10_026_avi_nsamplespersec.rb

@@ -12,7 +12,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'MS10-026 Microsoft MPEG Layer-3 Audio Stack Based Overflow',
       'Description'    => %q{
-          This module exploits a buffer overlow in l3codecx.ax while processing a
+          This module exploits a buffer overflow in l3codecx.ax while processing a
         AVI files with MPEG Layer-3 audio contents. The overflow only allows to overwrite
         with 0's so the three least significant bytes of EIP saved on stack are
         overwritten and shellcode is mapped using the .NET DLL memory technique pioneered

modules/exploits/windows/browser/ms10_090_ie_css_clip.rb

@@ -22,12 +22,12 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'MS10-090 Microsoft Internet Explorer CSS SetUserClip Memory Corruption',
       'Description'    => %q{
-          Thie module exploits a memory corruption vulnerability within Microsoft's
+          This module exploits a memory corruption vulnerability within Microsoft's
         HTML engine (mshtml). When parsing an HTML page containing a specially
         crafted CSS tag, memory corruption occurs that can lead arbitrary code
         execution.
 
-        It seems like Microsoft code inadvertantly increments a vtable pointer to
+        It seems like Microsoft code inadvertently increments a vtable pointer to
         point to an unaligned address within the vtable's function pointers. This
         leads to the program counter being set to the address determined by the
         address "[vtable+0x30+1]". The particular address depends on the exact

modules/exploits/windows/browser/ms13_080_cdisplaypointer.rb

@@ -37,7 +37,7 @@ def initialize(info={})
         handler we want to abuse - the "onpropertychange" event. Since the CBlockElement is a child
         of CTextArea, if we do a node swap of CBlockElement in "onselect", this will trigger
         "onpropertychange".  During "onpropertychange" event handling, a free of the CDisplayPointer
-        object can be forced by using an "Unslect" (other approaches also apply), but a reference
+        object can be forced by using an "Unselect" (other approaches also apply), but a reference
         of this freed memory will still be kept by CDoc::ScrollPointerIntoView, specifically after
         the CDoc::GetLineInfo call, because it is still trying to use that to update
         CDisplayPointer's position. When this invalid reference arrives in QIClassID, a crash

modules/exploits/windows/browser/nis2004_get.rb

@@ -14,7 +14,7 @@ def initialize(info = {})
       'Description'    => %q{
           This module exploits a stack buffer overflow in the ISAlertDataCOM ActiveX
         Control (ISLAert.dll) provided by Symantec Norton Internet Security 2004.
-        By sending a overly long string to the "Get()" method, an attacker may be
+        By sending an overly long string to the "Get()" method, an attacker may be
         able to execute arbitrary code.
       },
       'License'        => MSF_LICENSE,

modules/exploits/windows/browser/notes_handler_cmdinject.rb

@@ -14,9 +14,9 @@ def initialize(info={})
     super(update_info(info,
       'Name'           => "IBM Lotus Notes Client URL Handler Command Injection",
       'Description'    => %q{
-          This modules exploits a command injection vulnerability in the URL handler for
+          This module exploits a command injection vulnerability in the URL handler for
         for the IBM Lotus Notes Client <= 8.5.3. The registered handler can be abused with
-        an specially crafted notes:// URL to execute arbitrary commands with also arbitrary
+        a specially crafted notes:// URL to execute arbitrary commands with also arbitrary
         arguments. This module has been tested successfully on Windows XP SP3 with IE8,
         Google Chrome 23.0.1271.97 m and IBM Lotus Notes Client 8.5.2.
       },

modules/exploits/windows/browser/oracle_dc_submittoexpress.rb

@@ -14,7 +14,7 @@ def initialize(info = {})
       'Description'    => %q{
           This module exploits a stack buffer overflow in Oracle Document Capture 10g (10.1.3.5.0).
         Oracle Document Capture 10g comes bundled with a third party ActiveX control
-        emsmtp.dll (6.0.1.0). When passing a overly long string to the method "SubmitToExpress"
+        emsmtp.dll (6.0.1.0). When passing an overly long string to the method "SubmitToExpress"
         an attacker may be able to execute arbitrary code.
       },
       'License'        => MSF_LICENSE,

modules/exploits/windows/browser/oracle_webcenter_checkoutandopen.rb

@@ -13,7 +13,7 @@ def initialize(info={})
     super(update_info(info,
       'Name'           => "Oracle WebCenter Content CheckOutAndOpen.dll ActiveX Remote Code Execution",
       'Description'    => %q{
-          This modules exploits a vulnerability found in the Oracle WebCenter Content
+          This module exploits a vulnerability found in the Oracle WebCenter Content
         CheckOutAndOpenControl ActiveX. This vulnerability exists in openWebdav(), where
         user controlled input is used to call ShellExecuteExW(). This module abuses the
         control to execute an arbitrary HTA from a remote location. This module has been