Metasploit 4.7.0 Update 2013082102

Document created by Brandon Turner Employee on Aug 19, 2013
Version 1Show Document
  • View in full screen mode


This update includes 7 new modules, including exploits for Java, Joomla, Chasys Draw IES, Cogent DataHub, Intrasrv, MiniWeb and Ultra Mini HTTPD.  It also includes a new modules for Nexpose, Cisco Ironport, and OSX.


In addition, this update fixes 11 issues.


Module Changes

Exploit modules


Auxiliary and post modules


Notable Changes and Resolved Issues

  • 6264 - Fix false negative in auxiliary/scanner/http/tomcat_enum
  • 7888 - Fix bug that caused certain exploits to fail when triggered from some 3rd party clients
  • 8114 - Fix basilic_diff_exec false positive
  • 8119 - Fix issue causing HTTP Page Scraper to fail in certain circumstances
  • 8224 - Fix exception in post/windows/gather/enum_shares
  • 8278 - Removed the unused version module attribute
  • 8296 - Fix formatting of nessus_help command
  • 8297 - Fix exception in in nessus_policy_list
  • 8311 - Fix file handle leaks in some modules
  • 8312 - Fix file handle leaks in JTR
  • Fix update failure on Kali if apt repository is out of sync


How to Upgrade

Metasploit Pro is upgraded using the Administration menu and choosing the option Software Upgrade. To see how to upgrade your Metasploit installation, view this video in the Rapid7 Community.


Version Information

PRO 4.7.0 updates to 4.7.0-2013082102

MSF3 4.7.0 updates to 4.7.0-2013082102