Skip to content

Commit

Permalink
Merge branch 'junos_phprc_auto_prepend_file' of github.com:jheysel-r7…
Browse files Browse the repository at this point in the history 
…/metasploit-framework into junos_phprc_auto_prepend_file
  • Loading branch information
@jheysel-r7
jheysel-r7 committed Sep 28, 2023
2 parents 58642c1 + 4fecb4d commit 2928d47
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion documentation/modules/exploit/freebsd/http/junos_phprc_auto_prepend_file.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ function is `allow_url_include` which allows the use of URL-aware `fopen` wrappe

By default this exploit returns a session confined to a FreeBSD jail with limited functionality. There is a
datastore option `JAIL_BREAK`, that when set to true, will steal the necessary tokens from a user authenticated
to the J-Web application, in order to over write the root password hash. If there is no user authenticated
to the J-Web application, in order to overwrite the root password hash. If there is no user authenticated
to the J-Web application this method will not work. The module then authenticates with the new root password over
SSH and then rewrites the original root password hash to /etc/master.passwd.

Expand Down

0 comments on commit 2928d47

Please sign in to comment.