40% done

Author: h00die

modules/auxiliary/spoof/dns/compare_results.rb

@@ -15,7 +15,7 @@ def initialize(info = {})
         This module can be used to determine differences
       in the cache entries between two DNS servers. This is
       primarily useful for detecting cache poisoning attacks,
-      but can also be used to detect geo-location loadbalancing.
+      but can also be used to detect geo-location load balancing.
       },
       'Author'         => [ 'hdm' ],
       'License'        => MSF_LICENSE,

modules/auxiliary/sqli/oracle/dbms_cdc_subscribe_activate_subscription.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION',
       'Description'    => %q{
-        This module will escalate a Oracle DB user to DBA by exploiting an sql injection
+        This module will escalate an Oracle DB user to DBA by exploiting a sql injection
         bug in the SYS.DBMS_CDC_SUBSCRIBE.ACTIVATE_SUBSCRIPTION package/function.
         This vulnerability affects to Oracle Database Server 9i up to 9.2.0.5 and
         10g up to 10.1.0.4.

modules/auxiliary/sqli/oracle/dbms_export_extension.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via DBMS_EXPORT_EXTENSION',
       'Description'    => %q{
-        This module will escalate a Oracle DB user to DBA by exploiting an
+        This module will escalate an Oracle DB user to DBA by exploiting a
         sql injection bug in the DBMS_EXPORT_EXTENSION.GET_DOMAIN_INDEX_METADATA package.
 
         Note: This module has been tested against 9i, 10gR1 and 10gR2.

modules/auxiliary/sqli/oracle/dbms_metadata_get_granted_xml.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.DBMS_METADATA.GET_GRANTED_XML',
       'Description'    => %q{
-        This module will escalate a Oracle DB user to DBA by exploiting an sql injection
+        This module will escalate an Oracle DB user to DBA by exploiting a sql injection
         bug in the SYS.DBMS_METADATA.GET_GRANTED_XML package/function.
       },
       'Author'         => [ 'MC' ],

modules/auxiliary/sqli/oracle/dbms_metadata_get_xml.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.DBMS_METADATA.GET_XML',
       'Description'    => %q{
-        This module will escalate a Oracle DB user to DBA by exploiting an sql injection
+        This module will escalate an Oracle DB user to DBA by exploiting a sql injection
         bug in the SYS.DBMS_METADATA.GET_XML package/function.
       },
       'Author'         => [ 'MC' ],

modules/auxiliary/sqli/oracle/droptable_trigger.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection in MDSYS.SDO_TOPO_DROP_FTBL Trigger',
       'Description'    => %q{
-          This module will escalate a Oracle DB user to MDSYS by exploiting an sql injection bug in
+          This module will escalate an Oracle DB user to MDSYS by exploiting a sql injection bug in
           the MDSYS.SDO_TOPO_DROP_FTBL trigger. After that exploit escalate user to DBA using "CREATE ANY TRIGGER" privilege
           given to MDSYS user by creating evil trigger in system scheme (2-stage attack).
       },

modules/auxiliary/sqli/oracle/lt_findricset_cursor.rb

@@ -10,8 +10,8 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.LT.FINDRICSET Evil Cursor Method',
       'Description'    => %q{
-          This module will escalate a Oracle DB user to DBA by exploiting
-          an sql injection bug in the SYS.LT.FINDRICSET package via Evil
+          This module will escalate an Oracle DB user to DBA by exploiting
+          a sql injection bug in the SYS.LT.FINDRICSET package via Evil
           Cursor technique. Tested on oracle 10.1.0.3.0 -- should work on
           thru 10.1.0.5.0 and supposedly on 11g. Fixed with Oracle Critical
           Patch update October 2007.

modules/auxiliary/sqli/oracle/lt_mergeworkspace.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.LT.MERGEWORKSPACE',
       'Description'    => %q{
-        This module exploits an sql injection flaw in the MERGEWORKSPACE
+        This module exploits a sql injection flaw in the MERGEWORKSPACE
         procedure of the PL/SQL package SYS.LT. Any user with execute
         privilege on the vulnerable package can exploit this vulnerability.
       },

modules/auxiliary/sqli/oracle/lt_removeworkspace.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.LT.REMOVEWORKSPACE',
       'Description'    => %q{
-        This module exploits an sql injection flaw in the REMOVEWORKSPACE
+        This module exploits a sql injection flaw in the REMOVEWORKSPACE
         procedure of the PL/SQL package SYS.LT. Any user with execute
         privilege on the vulnerable package can exploit this vulnerability.
       },

modules/auxiliary/sqli/oracle/lt_rollbackworkspace.rb

@@ -10,7 +10,7 @@ def initialize(info = {})
     super(update_info(info,
       'Name'           => 'Oracle DB SQL Injection via SYS.LT.ROLLBACKWORKSPACE',
       'Description'    => %q{
-        This module exploits an sql injection flaw in the ROLLBACKWORKSPACE
+        This module exploits a sql injection flaw in the ROLLBACKWORKSPACE
         procedure of the PL/SQL package SYS.LT. Any user with execute
         privilege on the vulnerable package can exploit this vulnerability.
       },