Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove ElasticSearch Exploiter #1732

Closed
mssalvatore opened this issue Feb 22, 2022 · 1 comment
Closed

Remove ElasticSearch Exploiter #1732

mssalvatore opened this issue Feb 22, 2022 · 1 comment
Assignees
@shreyamalviya
Labels
Complexity: Medium Feature removal Impact: Low

Comments

@mssalvatore
Copy link
Collaborator

The ElasticSearch Exploiter module takes advantage of a vulnerability in ElasticSearch version 1.4.2, which has been EOL since May of 2016. This exploiter is therefore providing little to no value at this point. As we are refactoring all exploiters to enable them to become plugins, the cost of maintaining this exploiter now officially outweighs its worth.

Remove the ElasticSearch exploiter. Also consider removing the associated fingerprinter.
@shreyamalviya shreyamalviya self-assigned this Feb 24, 2022
@shreyamalviya shreyamalviya mentioned this issue Feb 24, 2022
Merged
7 tasks
@mssalvatore
Copy link
Collaborator Author

Resolved by #1744

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@shreyamalviya shreyamalviya

Labels
Complexity: Medium Feature removal Impact: Low
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mssalvatore @shreyamalviya