modules/exploits/windows/http/zenworks_uploadservlet.rb
Method initialize
has 43 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def initialize(info = {})
super(update_info(info,
'Name' => 'Novell ZENworks Configuration Management Remote Execution',
'Description' => %q{
This module exploits a code execution flaw in Novell ZENworks Configuration Management 10.2.0.
Method exploit
has 28 lines of code (exceeds 25 allowed). Consider refactoring. Open
Open
def exploit
# Generate the WAR containing the EXE containing the payload
app_base = rand_text_alphanumeric(4+rand(32-4))
jsp_name = rand_text_alphanumeric(8+rand(8))