Nmap Development mailing list archives

Re: conficker scan ( MS08-067: NOT RUN question)

From: Tom Sellers <nmap () fadedcode net>
Date: Tue, 31 Mar 2009 18:06:22 -0500

Joshua Kaplan wrote:

Got the scan working. Please clarify one result. In the host script results section, I see:

MS08-067: NOT RUN

The original command line is:

nmap -p 445 -d -PN --script smb-check-vulns --script-args safe=1 192.168.1.105 >> conficker_scan.txt

What does that mean ?


The script, smb-check-vulns, does not scan to see if MS08-067 is patched by default.
The reason for this is that the checking process will likely crash the target if the
host is NOT already patched.  As a safety precaution the script requires the 'unsafe=1'
parameter in order to run this and one other DoS check.

That being said, the Conficker check should still run.

Tom Sellers


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org

Current thread:

conficker scan Joshua Kaplan (Mar 31)
- Re: conficker scan David Fifield (Mar 31)
- <Possible follow-ups>
- conficker scan Joshua Kaplan (Mar 31)
  - Re: conficker scan Brandon Enright (Mar 31)
  - Re: conficker scan ( MS08-067: NOT RUN question) Tom Sellers (Mar 31)
  - Re: conficker scan David Fifield (Mar 31)
    - Re: conficker scan Ron (Mar 31)