The StateToOptions function in msfweb in Metasploit Framework 2.4 and earlier, when running with the -D option (defanged mode), allows attackers to modify temporary environment variables before the "_Defanged" environment option is checked when processing the Exploit command.
Software | From | Fixed in |
---|---|---|
metasploit / metasploit_framework | 2.0 | 2.0.x |
metasploit / metasploit_framework | 2.1 | 2.1.x |
metasploit / metasploit_framework | 2.2 | 2.2.x |
metasploit / metasploit_framework | 2.3 | 2.3.x |
metasploit / metasploit_framework | 2.4 | 2.4.x |