[NSE] MS08-067 check

[Ron <ron () skullsecurity net>]

Hey all,

I just put together a quick prototype for a ms08-067 checker. It's in 
the following branch:
svn://svn.insecure.org/nmap-exp/ron/ms08-067-test

The script is smb-checkvulns.nse.

I ran it against about 5 test systems, and produced accurate results 
(and properly changed after I applied the patch).

The only trick is that it can crash the svchost.exe process. If you have 
Visual Studio installed, it'll try to initiate the debugger; otherwise, 
it'll give you a 60-second countdown then reboot the system. I ran it 
about 50 times straight, and it didn't crash once. But it did crash a 
different box on the first go. :)

The code isn't cleaned or polished yet, I just want to get a feel for if 
it's working.

Ron

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org