mailing list archives
ms12-020 RDP Vuln script
From: Aleksandar Nikolic <nikolic.alek () gmail com>
Date: Mon, 7 May 2012 13:09:28 +0200
as I mentioned on irc the other day, I was notified by some people that
different results with this script when run with SYN scan and when run with
full connect scan.
Apparently script sometime fails when run with syn scan.
I've been debugging this , and came to conclusion that Windows drops second
connection attempt (the one from the script) if the first one was left
hanging (as would
happen with SYN only scan).
David suggested that I add a simple stdnse.sleep(). I've tested that and it
The script sleeps for one second, i've tried it down to 0.1 second, below
it still doesn't work. But just to make sure, I've set the sleep to 1
Hope that is not to big a slowdown ?
I've attached a rather small patch for this. If it is ok , I can commit it
Sent through the nmap-dev mailing list
Archived at http://seclists.org/nmap-dev/
- ms12-020 RDP Vuln script Aleksandar Nikolic (May 07)