Skip to content

Commit ee3dd3a

Browse files
nstarkenstarke
committed
More Fixes for WD MyBook Live Scanner
Fixes include removing deregistered options from credentials collection object and adding proof when there is no response
1 parent 82b74d5 commit ee3dd3a

File tree

2 files changed

+2
-5
lines changed

2 files changed

+2
-5
lines changed

lib/metasploit/framework/login_scanner/mybook_live.rb

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -45,7 +45,7 @@ def attempt_login(credential)
4545
if res && res.code == 302 && res.headers['location'] && res.headers['location'].include?('UI')
4646
result_opts.merge!(status: Metasploit::Model::Login::Status::SUCCESSFUL, proof: res.headers)
4747
elsif res.nil?
48-
result_opts.merge!(status: Metasploit::Model::Login::Status::INCORRECT)
48+
result_opts.merge!(status: Metasploit::Model::Login::Status::INCORRECT, proof: 'No response')
4949
else
5050
result_opts.merge!(status: Metasploit::Model::Login::Status::INCORRECT, proof: res.headers)
5151
end

modules/auxiliary/scanner/http/mybook_live_login.rb

Lines changed: 1 addition & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -37,10 +37,7 @@ def run_host(ip)
3737
blank_passwords: datastore['BLANK_PASSWORDS'],
3838
pass_file: datastore['PASS_FILE'],
3939
password: datastore['PASSWORD'],
40-
user_file: datastore['USER_FILE'],
41-
userpass_file: datastore['USERPASS_FILE'],
42-
username: 'admin',
43-
user_as_pass: datastore['USER_AS_PASS']
40+
username: 'admin'
4441
)
4542

4643
scanner = Metasploit::Framework::LoginScanner::MyBookLive.new(

0 commit comments

Comments
 (0)