Windows paths need 2 backslashes

jvazquez-r7 · jvazquez-r7 · commit ff30a272f359 · 2014-11-30T18:54:41.000-06:00
diff --git a/modules/auxiliary/admin/http/netflow_file_download.rb b/modules/auxiliary/admin/http/netflow_file_download.rb
@@ -16,7 +16,7 @@ def initialize(info={})
       'Description'    => %q{
         This module exploits an arbitrary file download vulnerability in CSVServlet
         on ManageEngine NetFlow Analyzer. This module has been tested on both Windows
-        and Linux with versions 8.6 to 10.2. Windows paths have to be escaped with 4
+        and Linux with versions 8.6 to 10.2. Windows paths have to be escaped with 2
         backslashes on the command line.
       },
       'Author'         =>
@@ -38,7 +38,7 @@ def initialize(info={})
         Opt::RPORT(8080),
         OptString.new('TARGETURI',
           [ true, "The base path to NetFlow Analyzer", '/netflow' ]),
-        OptString.new('FILEPATH', [true, 'Path of the file to download (escape Windows paths with 4 back slashes)', '/etc/passwd']),
+        OptString.new('FILEPATH', [true, 'Path of the file to download (escape Windows paths with 2 back slashes)', '/etc/passwd']),
       ], self.class)
   end
 
