mailing list archives
Re: Conficker scanning with nmap
From: Lionel Cons <lionel.cons () cern ch>
Date: Wed, 1 Apr 2009 10:54:07 +0200
Brandon Enright writes:
I've never been able to reproduce the problem myself and I've tested
against a *lot* of machines/devices so either the version of OpenSSL
I'm running doesn't have the same assert() or the error condition to
trigger data_len = 0 is somewhat involved.
Indeed, it seems it got fixed at some point last year:
However, Nmap should probably be backward compatible and workaround
this "feature" of older OpenSSL releases...
Sent through the nmap-dev mailing list
Archived at http://SecLists.Org