Re: Andrew's Status Report - #11 of 17

[Jacek Wielemborek <d33tah () gmail com>]

W dniu 14.07.2015 o 08:46, Andrew Jason Farabee pisze:
>  * Setup a debian 5 virtual machine running exim 4.69 in order to test
> the vulns port of smtp-vuln-cve2010-4344.nse. The first results of the
> test are here: https://gist.github.com/andrewfarabee/dffc9e8c245d29271db4
> (sorry about the lua syntax highlighting).  Right now I've found an
> issue with my usage of ipairs when scanning from outside of my
> network, so I am going to try to figure out what is causing that.
> Also, if the user specifies
> --script-args='smtp-vuln-cve2010-4344.exploit', they will still get a
> message asking them to run with this argument in order to exploit.  I
> don't think this was introduced in my port since the original script
> behaves in the same way. I'm going to look at some packet captures and
> debugging output to check if the script is not attempting exploitation
> or if it is just not made clear that exploitation was attempted and
> failed.

Could you elaborate on this one, including the specific error message?
It might be entirely something else.

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/