Fix for an Issue #636

stamparm · stamparm · commit 2f8846caec15 · 2014-03-11T21:11:51.000+01:00
diff --git a/lib/techniques/blind/inference.py b/lib/techniques/blind/inference.py
@@ -5,7 +5,6 @@
 See the file 'doc/COPYING' for copying permission
 """
 
-import re
 import threading
 import time
 
@@ -199,7 +198,7 @@ def validateChar(idx, value):
             value are not equal there will be a deliberate delay).
             """
 
-            if CHAR_INFERENCE_MARK not in payload:
+            if "'%s'" % CHAR_INFERENCE_MARK not in payload:
                 forgedPayload = safeStringFormat(payload.replace(INFERENCE_GREATER_CHAR, INFERENCE_NOT_EQUALS_CHAR), (expressionUnescaped, idx, value))
             else:
                 # e.g.: ... > '%c' -> ... > ORD(..)
@@ -255,7 +254,7 @@ def getChar(idx, charTbl=None, continuousOrder=True, expand=charsetType is None,
                 position = (len(charTbl) >> 1)
                 posValue = charTbl[position]
 
-                if not re.search(r"%s\b" % CHAR_INFERENCE_MARK, payload):
+                if "'%s'" % CHAR_INFERENCE_MARK not in payload:
                     forgedPayload = safeStringFormat(payload, (expressionUnescaped, idx, posValue))
                 else:
                     # e.g.: ... > '%c' -> ... > ORD(..)
