Land rapid7#2286, @wchen-r7's patch for undefined method errors

Author: jvazquez-r7

modules/auxiliary/admin/edirectory/edirectory_edirutil.rb

@@ -148,6 +148,11 @@ def run
 				}
 		}, 25)
 
+		if res.nil?
+			print_error("Did not get a response from server")
+			return
+		end
+
 		raw_data = res.body.scan(/#{action.opts['PATTERN']}/).flatten[0]
 		print_line("\n" + Rex::Text.decode_base64(raw_data))
 

modules/auxiliary/admin/http/jboss_seam_exec.rb

@@ -67,10 +67,10 @@ def run
 					'method' => 'GET',
 				}, 20)
 
-			if (res.headers['Location'] =~ %r(java.lang.Runtime.exec\%28java.lang.String\%29))
+			if (res and res.headers['Location'] =~ %r(java.lang.Runtime.exec\%28java.lang.String\%29))
 				flag_found_one = index
 				print_status("Found right index at [" + index.to_s + "] - exec")
-			elsif (res.headers['Location'] =~ %r(java.lang.Runtime\+java.lang.Runtime.getRuntime))
+			elsif (res and res.headers['Location'] =~ %r(java.lang.Runtime\+java.lang.Runtime.getRuntime))
 				print_status("Found right index at [" + index.to_s + "] - getRuntime")
 				flag_found_two = index
 			else
@@ -90,7 +90,8 @@ def run
 					'method' => 'GET',
 				}, 20)
 
-			if (res.headers['Location'] =~ %r(pwned=java.lang.UNIXProcess))
+
+			if (res and res.headers['Location'] =~ %r(pwned=java.lang.UNIXProcess))
 				print_status("Exploited successfully")
 			else
 				print_status("Exploit failed.")

modules/auxiliary/admin/http/typo3_sa_2010_020.rb

@@ -99,15 +99,23 @@ def run
 				},25)
 
 		rescue ::Rex::ConnectionRefused, ::Rex::HostUnreachable, ::Rex::ConnectionTimeout
+			return
 		rescue ::Timeout::Error, ::Errno::EPIPE => e
 			print_error(e.message)
+			return
+		end
+
+		if file.nil?
+			print_error("Connection timed out")
+			return
 		end
 
 		if ((counter.to_f/queue.length.to_f)*100.0).to_s =~ /\d0.0$/ # Display percentage complete every 10%
 			percentage = (counter.to_f/queue.length.to_f)*100.0
 			print_status("Requests #{percentage.to_i}% complete - [#{counter} / #{queue.length}]")
 		end
 
+		# file can be nil
 		case file.headers['Content-Type']
 		when 'text/html'
 			case file.body

modules/auxiliary/admin/oracle/osb_execqr2.rb

@@ -51,7 +51,7 @@ def run
 				'method' => 'POST',
 			}, 5)
 
-			if (res.headers['Set-Cookie'] and res.headers['Set-Cookie'].match(/PHPSESSID=(.*);(.*)/i))
+			if (res and res.headers['Set-Cookie'] and res.headers['Set-Cookie'].match(/PHPSESSID=(.*);(.*)/i))
 
 				sessionid = res.headers['Set-Cookie'].split(';')[0]
 

modules/auxiliary/admin/oracle/osb_execqr3.rb

@@ -48,7 +48,7 @@ def run
 				'method' => 'POST',
 			}, 5)
 
-			if (res.headers['Set-Cookie'] and res.headers['Set-Cookie'].match(/PHPSESSID=(.*);(.*)/i))
+			if (res and res.headers['Set-Cookie'] and res.headers['Set-Cookie'].match(/PHPSESSID=(.*);(.*)/i))
 
 				sessionid = res.headers['Set-Cookie'].split(';')[0]
 

modules/auxiliary/gather/external_ip.rb

@@ -42,6 +42,12 @@ def initialize
 	def run
 		connect
 		res = send_request_cgi({'uri' => '/ip', 'method' => 'GET' })
+
+		if res.nil?
+			print_error("Connection timed out")
+			return
+		end
+
 		our_addr = res.body.strip
 		if Rex::Socket.is_ipv4?(our_addr) or Rex::Socket.is_ipv6?(our_addr)
 			print_good("Source ip to #{rhost} is #{our_addr}")

modules/auxiliary/scanner/http/axis_local_file_include.rb

@@ -84,7 +84,12 @@ def get_credentials(uri)
 
 			print_status("#{target_url} - Apache Axis - Dumping administrative credentials")
 
-			if (res and res.code == 200)
+			if res.nil?
+				print_error("#{target_url} - Connection timed out")
+				return
+			end
+
+			if (res.code == 200)
 				if res.body.to_s.match(/axisconfig/)
 
 					res.body.scan(/parameter\sname=\"userName\">([^\s]+)</)

modules/auxiliary/scanner/http/barracuda_directory_traversal.rb

@@ -63,7 +63,12 @@ def run_host(ip)
 				'uri'     => uri + payload,
 			}, 25)
 
-		if (res and res.code == 200 and res.body)
+		if res.nil?
+			print_error("#{target_url} - Connection timed out")
+			return
+		end
+
+		if (res.code == 200 and res.body)
 			if res.body.match(/\<html\>(.*)\<\/html\>/im)
 				html = $1
 

modules/auxiliary/scanner/http/dir_webdav_unicode_bypass.rb

@@ -164,7 +164,7 @@ def run_host(ip)
 						'data'		=> webdav_req + "\r\n\r\n",
 					}, 20)
 
-					if (res.code.to_i == 207)
+					if (res and res.code.to_i == 207)
 						print_status("\tFound vulnerable WebDAV Unicode bypass target #{wmap_base_url}#{tpath}%c0%af#{testfdir} #{res.code} (#{wmap_target_host})")
 
 						# Unable to use report_web_vuln as method is PROPFIND and is not part of allowed

modules/auxiliary/scanner/http/dolibarr_login.rb

@@ -41,7 +41,7 @@ def initialize(info = {})
 	def get_sid_token
 		res = send_request_raw({
 			'method' => 'GET',
-			'uri'    => @uri.path
+			'uri'    => normalize_uri(@uri.path)
 		})
 
 		return [nil, nil] if not (res and res.headers['Set-Cookie'])
@@ -74,7 +74,7 @@ def do_login(user, pass)
 		begin
 			res = send_request_cgi({
 				'method'   => 'POST',
-				'uri'      => "#{@uri.path}index.php",
+				'uri'      => normalize_uri("#{@uri.path}index.php"),
 				'cookie'   => sid,
 				'vars_post' => {
 					'token'         => token,
@@ -92,6 +92,11 @@ def do_login(user, pass)
 			return :abort
 		end
 
+		if res.nil?
+			print_error("#{@peer} - Connection timed out")
+			return :abort
+		end
+
 		location = res.headers['Location']
 		if res and res.headers and (location = res.headers['Location']) and location =~ /admin\//
 			print_good("#{@peer} - Successful login: \"#{user}:#{pass}\"")
@@ -112,7 +117,7 @@ def do_login(user, pass)
 	end
 
 	def run
-		@uri = normalize_uri(target_uri.path)
+		@uri = target_uri.path
 		@uri.path << "/" if @uri.path[-1, 1] != "/"
 		@peer = "#{rhost}:#{rport}"