Metasploit 4.7.2 Update 2013103001

Document created by Brandon Turner Employee on Oct 28, 2013
Version 1Show Document
  • View in full screen mode

Summary

This update includes 25 new modules, including exploits for D-Link DIR-605L, ISPConfig, Moodle, NAS4Free, Openbravo, OpenMediaVault, vTigerCRM, Zabbix, Mac OSX, Open Flash Chart, WebTester, HP Intelligent Management Center, Windows and Interactive Graphical SCADA.  It also includes new modules for HP Intelligent Management, SMB, Node.js, Jenkins, Radware AppDirector, and Windows.

 

In addition, this update fixes 17 reported issues.

 

Exploit modules

 

Auxiliary and post modules

 

Notable Changes and Resolved Issues

  • 4397 - energizer_duo_detect - no db_vulns and missing info of db_services
  • 4730 - Framework settings don't show default settings
  • 6553 - Non-BSOD check for MS120
  • 6787 - Problems with msfupdate on 4.3.0
  • 8291 - sock_sendpage doesn't work after Meterpreter source removed
  • 8384 - Outpost24 import formats
  • 8413 - Fingerprint Office version
  • 8419 - Some exploit modules missing target platforms and platforms
  • 8494 - Msfpayload for sparc in war output format
  • 8496 - Update boilerplate comment docs to reflect reality
  • 8497 - msftidy should use File.find, not the more complicated Dir.glob
  • 8500 - javascript code in server.rb should be in their own js file
  • 8507 - Several IE exploits redirect incorrectly with URIPATH of "/"
  • 8510 - FileDropper fails on shell sessions on Windows
  • 8512 - Web exploits are failing
  • 8513 - ZDI references should be first-class references
  • 8525 - Post module windows/gather/enum_ie: NoMethodError for nil:NilClass

 

How to Upgrade

Metasploit Pro is upgraded using the Administration menu and choosing the option Software Upgrade. To see how to upgrade your Metasploit installation, view this video in the Rapid7 Community.

 

Version Information

PRO 4.7.2 updates to 4.7.2-2013103001

MSF3 4.7.2 updates to 4.7.2-2013103001

Attachments

    Outcomes