Module: Msf::Exploit::Remote::HTTP::NagiosXi::Version

Includes:: URIs

Included in:: Msf::Exploit::Remote::HTTP::NagiosXi

Defined in:: lib/msf/core/exploit/remote/http/nagios_xi/version.rb

Constant Summary collapse

PRE_5_2_VERSION_REGEX = Versions of NagiosXI pre-5.2 have different formats (5r1.0, 2014r2.7, 2012r2.8b, etc.) that Rex cannot handle, so we set pre-5.2 versions to 1.0.0 for easier Rex comparison because the module only works on post-5.2 versions.

'^\d{4}r\d(?:\.\d)?(?:(?:RC\d)|(?:[a-z]{1,3}))?$'

Instance Method Summary collapse

#nagios_xi_version(res_backend) ⇒ String^?

Extracts the Nagios XI version information from an HTTP response body obtained after authentication.
#nagios_xi_version_no_auth ⇒ Array

Tries to obtain the Nagios XI version from the login.php page.

Methods included from URIs

#nagios_xi_backend_url, #nagios_xi_install_url, #nagios_xi_login_url

Instance Method Details

#nagios_xi_version(res_backend) ⇒ `String`^?

Extracts the Nagios XI version information from an HTTP response body obtained after authentication. Works for index.php and perhaps other backend pages.

Parameters:

res_backend (String) —

HTTP response body

Returns:

(String, nil) —

, String containing the Nagios XI version if successful, nil otherwise



15
16
17

# File 'lib/msf/core/exploit/remote/http/nagios_xi/version.rb', line 15

def nagios_xi_version(res_backend)
  version = res_backend.scan(/product=nagiosxi&version=(.+?)&/)&.flatten&.first
end

#nagios_xi_version_no_auth ⇒ `Array`

Tries to obtain the Nagios XI version from the login.php page. This will not work for older Nagios XI versions.