Metasploit 4.6.2 Update 2013071001

Document created by Brandon Turner Employee on Jul 8, 2013
Version 1Show Document
  • View in full screen mode

Summary

This update includes 6 new modules, including exploits for InstantCMS, ABBS Audio Media Player and ERS Viewer.  It also contains new modules for IPMI.

 

In addition, this update fixes 15 issues.

 

Module Changes

Exploit modules

 

Auxiliary and post modules

 

Notable Changes and Resolved Issues

  • 8118 - Fix memory_grep to enumerate from multiple processes
  • 8120 - Fix memory_grep to read data from the heap
  • 8121 - Specify a base address for to_hex_dump
  • 8123 - PID is checked before use
  • 8126 - Improve bitcoin_jacker.rb to use functions from Msf::Post::File
  • 8127 - Don't recheck ARTIFACTS option in enum_artifacts.rb
  • 8129 - Fix potential undefined method in enum_services.rb
  • 8130 - Fix invalid module metadata
  • 8131 - Improve tortoisesvn.rb to use Rex for decoding Base64
  • 8132 - Fix potential string concatenation issue in total_commander.rb
  • 8133 - Improve trillian.rb to use Rex for decoding Base64
  • 8134 - Fix windows_autologin.rb to handle registry_getvaldata return value
  • 8135 - hashdump.rb informs where passwd and shadow files are stored
  • 8136 - novell_client_nicm.rb uses execute_shell.rb
  • 8137 - novell_client_nicm.rb uses execute_shellcode() instead of having its own

 

How to Upgrade

Metasploit Pro is upgraded using the Administration menu and choosing the option Software Upgrade. To see how to upgrade your Metasploit installation, view this video in the Rapid7 Community.

 

Version Information

PRO 4.6.2 updates to 4.6.2-2013071001

MSF3 4.6.2 updates to 4.6.2-2013071001

Attachments

    Outcomes