Land rapid7#8256. Handle blank creds in smb login scanner.

jbarnett-r7 · jbarnett-r7 · commit a444444a0477 · 2017-04-18T10:11:37.000-05:00
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -350,7 +350,7 @@ GEM
       rspec-mocks (~> 3.5.0)
       rspec-support (~> 3.5.0)
     rspec-support (3.5.0)
-    ruby_smb (0.0.10)
+    ruby_smb (0.0.12)
       bindata
       rubyntlm
       windows_error
diff --git a/lib/metasploit/framework/login_scanner/smb.rb b/lib/metasploit/framework/login_scanner/smb.rb
@@ -94,8 +94,10 @@ def attempt_login(credential)
 
           begin
 
-            realm       = credential.realm || ""
-            client      = RubySMB::Client.new(self.dispatcher, username: credential.public, password: credential.private, domain: realm)
+            realm       = credential.realm   || ""
+            username    = credential.public  || ""
+            password    = credential.private || ""
+            client      = RubySMB::Client.new(self.dispatcher, username: username, password: password, domain: realm)
             status_code = client.login
 
             # Windows SMB will return an error code during Session
@@ -125,11 +127,13 @@ def attempt_login(credential)
               else
                 status = Metasploit::Model::Login::Status::INCORRECT
             end
-          rescue ::Rex::ConnectionError => e
+          rescue ::Rex::ConnectionError, Errno::EINVAL => e
             status = Metasploit::Model::Login::Status::UNABLE_TO_CONNECT
             proof = e
           rescue RubySMB::Error::UnexpectedStatusCode => e
             status = Metasploit::Model::Login::Status::INCORRECT
+          ensure
+            client.disconnect!
           end
 
           if status == Metasploit::Model::Login::Status::SUCCESSFUL && credential.public.empty?
