FIX decryption fail with padding 01 #1 (bis)

mpgn · mpgn · commit 5c36d0e13183 · 2016-11-16T20:06:08.000+01:00
forgot to check the last byte
diff --git a/exploit.py b/exploit.py
@@ -142,8 +142,8 @@ def run(cipher,size_block,host,url,cookie,method,post,error):
 
                         break 
             if found == False:
-                # lets say padding is 01 for the last block (the padding block)
-                if len(cipher_block)-1 == block:
+                # lets say padding is 01 for the last byte of the last block (the padding block)
+                if len(cipher_block)-1 == block and i == 0:
                     value = re.findall('..',bk)
                     valide_value.insert(0,"01")
                     if args.verbose == True:
diff --git a/test.py b/test.py
@@ -155,7 +155,7 @@ def run(cipher,size_block):
                         break
             if found == False:
                 # lets say padding is 01 for the last block (the padding block)
-                if len(cipher_block)-1 == block:
+                if len(cipher_block)-1 == block and i == 0:
                     value = re.findall('..',bk)
                     valide_value.insert(0,"01")
                     if args.verbose == True:
