Metasploit Framework 3.5.2 Released with a fix to "privilege escalation vulnerability".
For users who prefer not to re-install Metasploit, you can use the following commands to fix the problem:
Vista and newer:
icacls c:\framework /inheritance:d /t
icacls c:\framework /remove *S-1-5-32-545 /t
icacls c:\framework /remove *S-1-5-11 /t
For systems older than Vista, you will need the xcacls.vbs tool available from Microsoft.
xcacls.vbs c:\framework /E /R SID#S-1-5-32-545 /T
Note that the "Authenticated Users" group doesn't exist before Vista, so you only need to remove "Users".
This issue is mitigated by the fact that it only affects multi-user Windows installations with low-privileged accounts, a scenario we believe to be a small percentage of our users.
In addition to fixing this vulnerability, the 3.5.2 release fixes over 50 bugs and contains 39 new modules. Also included in this release is a revamped WMAP courtesy of Efrain Torres, improvements to Meterpreter's railgun extension thanks to chao-mu, and a fledgling version of Post Exploitation modules (a more powerful replacement for Meterpreter scripts).
Source:www.metasploit.com
For users who prefer not to re-install Metasploit, you can use the following commands to fix the problem:
Vista and newer:
icacls c:\framework /inheritance:d /t
icacls c:\framework /remove *S-1-5-32-545 /t
icacls c:\framework /remove *S-1-5-11 /t
For systems older than Vista, you will need the xcacls.vbs tool available from Microsoft.
xcacls.vbs c:\framework /E /R SID#S-1-5-32-545 /T
Note that the "Authenticated Users" group doesn't exist before Vista, so you only need to remove "Users".
This issue is mitigated by the fact that it only affects multi-user Windows installations with low-privileged accounts, a scenario we believe to be a small percentage of our users.
In addition to fixing this vulnerability, the 3.5.2 release fixes over 50 bugs and contains 39 new modules. Also included in this release is a revamped WMAP courtesy of Efrain Torres, improvements to Meterpreter's railgun extension thanks to chao-mu, and a fledgling version of Post Exploitation modules (a more powerful replacement for Meterpreter scripts).
Source:www.metasploit.com
No comments:
Post a Comment