Nmap Development mailing list archives
[NSE] MS08-067 check
From: Ron <ron () skullsecurity net>
Date: Wed, 05 Nov 2008 16:07:57 -0600
Hey all,I just put together a quick prototype for a ms08-067 checker. It's in the following branch:
svn://svn.insecure.org/nmap-exp/ron/ms08-067-test The script is smb-checkvulns.nse.I ran it against about 5 test systems, and produced accurate results (and properly changed after I applied the patch).
The only trick is that it can crash the svchost.exe process. If you have Visual Studio installed, it'll try to initiate the debugger; otherwise, it'll give you a 60-second countdown then reboot the system. I ran it about 50 times straight, and it didn't crash once. But it did crash a different box on the first go. :)
The code isn't cleaned or polished yet, I just want to get a feel for if it's working.
Ron _______________________________________________ Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- [NSE] MS08-067 check Ron (Nov 05)
- Re: [NSE] MS08-067 check jah (Nov 05)
- Re: [NSE] MS08-067 check Brandon Enright (Nov 05)
- Re: [NSE] MS08-067 check Ron (Nov 09)
- Re: [NSE] MS08-067 check Ron (Nov 09)
- Re: [NSE] MS08-067 check Brandon Enright (Nov 12)
- Re: [NSE] MS08-067 check Ron (Nov 12)
- Re: [NSE] MS08-067 check Ron (Nov 12)
- Re: [NSE] MS08-067 check Brandon Enright (Nov 12)
- Re: [NSE] MS08-067 check jah (Nov 05)