Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: Latest Nmap = Segmentation fault
From: Lionel Cons <lionel.cons () cern ch>
Date: Tue, 4 Dec 2007 10:26:23 +0100

Diman Todorov writes:
I agree with you that nmap shouldn't crash on bogus scrips. The  
problem you are having is that you are trying to set the service  
version on a port when you aren't actually performing a version scan.  

Well, the problem is still there with -sV:

# nmap -d --script ./test.nse -sU -sV -p 623 localhost

Starting Nmap 4.23RC3 ( http://insecure.org ) at 2007-12-04 10:22 CET
[...]
SCRIPT ENGINE: Initialized 5 rules
SCRIPT ENGINE: Matching rules.
SCRIPT ENGINE: Will run ././test.nse against 127.0.0.1
SCRIPT ENGINE: Running scripts.
SCRIPT ENGINE: Runlevel: 1.000000
Initiating SCRIPT ENGINE at 10:22
SCRIPT ENGINE DEBUG: so far so good
Segmentation fault

Also, if I want to be on the safe side and do nothing if -sV was not
given, how can I test this from NSE?

Cheers,

Lionel

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault