sempervictus
diff --git a/‎data/exploits/php/rfi-locations.dat
Lines changed: 1 addition & 1 deletion b/‎data/exploits/php/rfi-locations.dat
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/msf/core/db_manager/import/nikto.rb
Lines changed: 10 additions & 0 deletions b/‎lib/msf/core/db_manager/import/nikto.rb
Lines changed: 10 additions & 0 deletions
diff --git a/‎lib/msf/core/db_manager/import/nmap.rb
Lines changed: 4 additions & 0 deletions b/‎lib/msf/core/db_manager/import/nmap.rb
Lines changed: 4 additions & 0 deletions
diff --git a/‎lib/msf/core/db_manager/module_cache.rb
Lines changed: 2 additions & 1 deletion b/‎lib/msf/core/db_manager/module_cache.rb
Lines changed: 2 additions & 1 deletion
diff --git a/‎lib/msf/core/module/reference.rb
Lines changed: 5 additions & 3 deletions b/‎lib/msf/core/module/reference.rb
Lines changed: 5 additions & 3 deletions
diff --git a/‎lib/msf/core/module/search.rb
Lines changed: 2 additions & 0 deletions b/‎lib/msf/core/module/search.rb
Lines changed: 2 additions & 0 deletions
diff --git a/‎lib/msf/ui/console/command_dispatcher/core.rb
Lines changed: 1 addition & 0 deletions b/‎lib/msf/ui/console/command_dispatcher/core.rb
Lines changed: 1 addition & 0 deletions
diff --git a/‎modules/auxiliary/admin/2wire/xslt_password_reset.rb
Lines changed: 1 addition & 0 deletions b/‎modules/auxiliary/admin/2wire/xslt_password_reset.rb
Lines changed: 1 addition & 0 deletions
diff --git a/‎modules/auxiliary/admin/android/google_play_store_uxss_xframe_rce.rb
Lines changed: 1 addition & 0 deletions b/‎modules/auxiliary/admin/android/google_play_store_uxss_xframe_rce.rb
Lines changed: 1 addition & 0 deletions
diff --git a/‎modules/auxiliary/admin/backupexec/dump.rb
Lines changed: 1 addition & 0 deletions b/‎modules/auxiliary/admin/backupexec/dump.rb
Lines changed: 1 addition & 0 deletions
@@ -1,4 +1,4 @@
-# Compiled by RSnake 02/01/2010 Mostly from milw0rm and elsewhere.
+# Compiled by RSnake 02/01/2010 Mostly from milw0rm osvdb.org and elsewhere.
 # Change XXpathXX to the path of your backdoor.  Note that you may need to 
 # try it against every directory on the target and because of how this was
 # culled you may need to add a question mark to your own XXpathXX URL:
 
@@ -40,6 +40,16 @@ def import_nikto_xml(args={}, &block)
             }
             # Always report it as a note.
             report_note(desc_data)
+            # Sometimes report it as a vuln, too.
+            # XXX: There's a Vuln.info field but nothing reads from it? See Bug #5837
+            if item.attributes['osvdbid'].to_i != 0
+              desc_data[:refs] = ["OSVDB-#{item.attributes['osvdbid']}"]
+              desc_data[:name] = "NIKTO-#{item.attributes['id']}"
+              desc_data.delete(:data)
+              desc_data.delete(:type)
+              desc_data.delete(:update)
+              report_vuln(desc_data)
+            end
           end
         end
       end
 
@@ -182,6 +182,7 @@ def import_nmap_xml(args={}, &block)
                 :info => 'Microsoft Windows Server Service Crafted RPC Request Handling Unspecified Remote Code Execution',
                 :refs =>['CVE-2008-4250',
                   'BID-31874',
+                  'OSVDB-49243',
                   'CWE-94',
                   'MSFT-MS08-067',
                   'MSF-Microsoft Server Service Relative Path Stack Corruption',
@@ -203,6 +204,8 @@ def import_nmap_xml(args={}, &block)
                   'BID-18325',
                   'BID-18358',
                   'BID-18424',
+                  'OSVDB-26436',
+                  'OSVDB-26437',
                   'MSFT-MS06-025',
                   'MSF-Microsoft RRAS Service RASMAN Registry Overflow',
                   'NSS-21689']
@@ -221,6 +224,7 @@ def import_nmap_xml(args={}, &block)
                 :info => 'Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution',
                 # Add more refs based on nessus/nexpose .. results
                 :refs =>['CVE-2007-1748',
+                  'OSVDB-34100',
                   'MSF-Microsoft DNS RPC Service extractQuotedChar()',
                   'NSS-25168']
               }
 
@@ -158,6 +158,7 @@ def remove_module_details(mtype, refname)
   # +edb+:: Matches modules with the given Exploit-DB ID.
   # +name+:: Matches modules with the given full name or name.
   # +os+, +platform+:: Matches modules with the given platform or target name.
+  # +osvdb+:: Matches modules with the given OSVDB ID.
   # +ref+:: Matches modules with the given reference ID.
   # +type+:: Matches modules with the given type.
   #
@@ -276,7 +277,7 @@ def search_modules(search_string)
 
             query = query.includes(:refs).references(:refs)
             union_conditions << Mdm::Module::Ref.arel_table[:name].matches_any(formatted_values)
-          when 'cve', 'bid', 'edb'
+          when 'cve', 'bid', 'osvdb', 'edb'
             formatted_values = value_set.collect { |value|
               prefix = keyword.upcase
 
 
@@ -77,7 +77,7 @@ def self.from_s(str)
 
   #
   # Initializes a site reference from an array.  ary[0] is the site and
-  # ary[1] is the site context identifier, such as CVE.
+  # ary[1] is the site context identifier, such as OSVDB.
   #
   def self.from_a(ary)
     return nil if (ary.length < 2)
@@ -95,7 +95,9 @@ def initialize(in_ctx_id = 'Unknown', in_ctx_val = '')
     self.ctx_id  = in_ctx_id
     self.ctx_val = in_ctx_val
 
-    if (in_ctx_id == 'CVE')
+    if (in_ctx_id == 'OSVDB')
+      self.site = "http://www.osvdb.org/#{in_ctx_val}"
+    elsif (in_ctx_id == 'CVE')
       self.site = "http://cvedetails.com/cve/#{in_ctx_val}/"
     elsif (in_ctx_id == 'CWE')
       self.site = "https://cwe.mitre.org/data/definitions/#{in_ctx_val}.html"
@@ -148,7 +150,7 @@ def from_s(str)
   #
   attr_reader :site
   #
-  # The context identifier of the site, such as CVE.
+  # The context identifier of the site, such as OSVDB.
   #
   attr_reader :ctx_id
   #
 
@@ -86,6 +86,8 @@ def search_filter(search_string)
               match = [t,w] if refs.any? { |ref| ref =~ /^cve\-/i and ref =~ r }
             when 'bid'
               match = [t,w] if refs.any? { |ref| ref =~ /^bid\-/i and ref =~ r }
+            when 'osvdb'
+              match = [t,w] if refs.any? { |ref| ref =~ /^osvdb\-/i and ref =~ r }
             when 'edb'
               match = [t,w] if refs.any? { |ref| ref =~ /^edb\-/i and ref =~ r }
           end
 
@@ -1615,6 +1615,7 @@ def cmd_search_help
       'cve'      => 'Modules with a matching CVE ID',
       'edb'      => 'Modules with a matching Exploit-DB ID',
       'name'     => 'Modules with a matching descriptive name',
+      'osvdb'    => 'Modules with a matching OSVDB ID',
       'platform' => 'Modules affecting this platform',
       'ref'      => 'Modules with a matching ref',
       'type'     => 'Modules of a specific type (exploit, auxiliary, or post)',
 
@@ -26,6 +26,7 @@ def initialize(info={})
       'References'     =>
         [
           [ 'CVE', '2007-4387' ],
+          [ 'OSVDB', '37667' ],
           [ 'BID', '36075' ],
           [ 'URL', 'http://seclists.org/bugtraq/2007/Aug/225' ],
         ],
 
@@ -38,6 +38,7 @@ def initialize(info = {})
       'References' => [
         [ 'URL', 'https://community.rapid7.com/community/metasploit/blog/2014/09/15/major-android-bug-is-a-privacy-disaster-cve-2014-6041'],
         [ 'URL', 'http://1337day.com/exploit/description/22581' ],
+        [ 'OSVDB', '110664' ],
         [ 'CVE', '2014-6041' ]
       ],
       'DefaultAction'  => 'WebServer'
 
@@ -27,6 +27,7 @@ def initialize(info = {})
       'References'     =>
         [
           ['CVE', '2005-2611'],
+          ['OSVDB', '18695'],
           ['BID', '14551'],
           ['URL', 'http://www.fpns.net/willy/msbksrc.lzh'],
         ],
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-# Compiled by RSnake 02/01/2010 Mostly from milw0rm and elsewhere.`
	`1`	`+# Compiled by RSnake 02/01/2010 Mostly from milw0rm osvdb.org and elsewhere.`
`2`	`2`	`# Change XXpathXX to the path of your backdoor. Note that you may need to`
`3`	`3`	`# try it against every directory on the target and because of how this was`
`4`	`4`	`# culled you may need to add a question mark to your own XXpathXX URL:`
Original file line number	Diff line number	Diff line change
`@@ -77,7 +77,7 @@ def self.from_s(str)`
`77`	`77`
`78`	`78`	`#`
`79`	`79`	`# Initializes a site reference from an array. ary[0] is the site and`
`80`		`- # ary[1] is the site context identifier, such as CVE.`
	`80`	`+ # ary[1] is the site context identifier, such as OSVDB.`
`81`	`81`	`#`
`82`	`82`	`def self.from_a(ary)`
`83`	`83`	`return nil if (ary.length < 2)`
`@@ -95,7 +95,9 @@ def initialize(in_ctx_id = 'Unknown', in_ctx_val = '')`
`95`	`95`	`self.ctx_id = in_ctx_id`
`96`	`96`	`self.ctx_val = in_ctx_val`
`97`	`97`
`98`		`- if (in_ctx_id == 'CVE')`
	`98`	`+ if (in_ctx_id == 'OSVDB')`
	`99`	`+ self.site = "http://www.osvdb.org/#{in_ctx_val}"`
	`100`	`+ elsif (in_ctx_id == 'CVE')`
`99`	`101`	`self.site = "http://cvedetails.com/cve/#{in_ctx_val}/"`
`100`	`102`	`elsif (in_ctx_id == 'CWE')`
`101`	`103`	`self.site = "https://cwe.mitre.org/data/definitions/#{in_ctx_val}.html"`
`@@ -148,7 +150,7 @@ def from_s(str)`
`148`	`150`	`#`
`149`	`151`	`attr_reader :site`
`150`	`152`	`#`
`151`		`- # The context identifier of the site, such as CVE.`
	`153`	`+ # The context identifier of the site, such as OSVDB.`
`152`	`154`	`#`
`153`	`155`	`attr_reader :ctx_id`
`154`	`156`	`#`
Original file line number	Diff line number	Diff line change
`@@ -26,6 +26,7 @@ def initialize(info={})`
`26`	`26`	`'References' =>`
`27`	`27`	`[`
`28`	`28`	`[ 'CVE', '2007-4387' ],`
	`29`	`+ [ 'OSVDB', '37667' ],`
`29`	`30`	`[ 'BID', '36075' ],`
`30`	`31`	`[ 'URL', 'http://seclists.org/bugtraq/2007/Aug/225' ],`
`31`	`32`	`],`
Original file line number	Diff line number	Diff line change
`@@ -27,6 +27,7 @@ def initialize(info = {})`
`27`	`27`	`'References' =>`
`28`	`28`	`[`
`29`	`29`	`['CVE', '2005-2611'],`
	`30`	`+ ['OSVDB', '18695'],`
`30`	`31`	`['BID', '14551'],`
`31`	`32`	`['URL', 'http://www.fpns.net/willy/msbksrc.lzh'],`
`32`	`33`	`],`