fix rapid7#4337: gracefully handle resolve_sid failure when enumerating user profiles

Brent Cook · Brent Cook · commit bed40a83eeec · 2015-02-17T13:03:12.000-06:00
Rather than throwing a backtrace with an unresolvable SID, try to get as
much profile data as possible if resolve_sid fails.

```
[*] Determining session platform and type...
[-] Unexpected windows error 1332
[*] Checking for Firefox directory in:
C:\Users\Administrator\AppData\Roaming\Mozilla\
[-] Firefox not found
[*] Post module execution completed
```
diff --git a/lib/msf/core/post/windows/user_profiles.rb b/lib/msf/core/post/windows/user_profiles.rb
@@ -49,9 +49,6 @@ def parse_profiles(hives)
   #
   def parse_profile(hive)
     profile={}
-    sidinf = resolve_sid(hive['SID'].to_s)
-    profile['UserName'] = sidinf[:name]
-    profile['Domain'] = sidinf[:domain]
     profile['SID'] = hive['SID']
     profile['ProfileDir'] = hive['PROF']
     profile['AppData'] = registry_getvaldata("#{hive['HKU']}\\Software\\Microsoft\\Windows\\CurrentVersion\\Explorer\\Shell Folders", 'AppData')
@@ -65,6 +62,12 @@ def parse_profile(hive)
     profile['Temp'] = registry_getvaldata("#{hive['HKU']}\\Environment", 'TEMP').to_s.sub('%USERPROFILE%',profile['ProfileDir'])
     profile['Path'] = registry_getvaldata("#{hive['HKU']}\\Environment", 'PATH')
 
+    sidinf = resolve_sid(hive['SID'].to_s)
+    if sidinf
+      profile['UserName'] = sidinf[:name]
+      profile['Domain'] = sidinf[:domain]
+    end
+
     return profile
   end
 
