zenmap stuck on 3 threads for over 20 hours while scanning smal home network ...

[Alex Haralampiev <haralaag () gmail com>]

I downloaded yesterday the latest compiled binaries for Windows
(nmap-6.25-setup.exe) and tried scanning my home env with the zenmap using
the slow comprehensive profile. I was prepared to wait but f when the
output got stuck for more that 1 hour on the following step with "remaining
66 secs" I decided to look online for suggestions.
tail of the XML log in TEMP
. . .
<taskprogress task="Service scan" time="1357322800" percent="98.34"
remaining="97" etc="1357322896"/>
<taskend task="Service scan" time="1357322886" extrainfo="2107 services on
7 hosts"/>
<taskbegin task="NSE" time="1357322896"/>
<taskprogress task="NSE" time="1357322928" percent="17.36" remaining="153"
etc="1357323080"/>
<taskprogress task="NSE" time="1357322958" percent="48.69" remaining="66"
etc="1357323023"/>

One of them was to try the scan with -d flag so I stopped the scan;
rebooted the PC and started again this time with the following profile:
nmap -sS -sU -T4 -A *-d2* -v -PE -PP -PS80,443 -PA3389 -PU40125 -PY -g 53
--script "default or (discovery and safe)" 192.168.1-2.1-254 *"--stats-every
10"*

Since last night the zenmap is logging the following 3 steps over and over
again:
. . .
Stats: 20:28:58 elapsed; 349 hosts completed (10 up), 10 undergoing Script
Scan
NSE: Active NSE Script Threads: 3 (3 waiting)

NSE Timing: About 99.93% done; ETC: 10:42 (0:00:43 remaining)
NSE: Waiting: 'ms-sql-info' (thread: 05FE8CC0)
    stack traceback:
        [C]: in function 'connect'
        J:\pdf\nmap/nselib/mssql.lua:611: in function 'DiscoverInstances'
        J:\pdf\nmap/nselib/mssql.lua:2394: in function 'DiscoverBySsrp'
        J:\pdf\nmap/nselib/mssql.lua:2517: in function 'Discover'
        J:\pdf\nmap/scripts\ms-sql-info.nse:238: in function
<J:\pdf\nmap/scripts\ms-sql-info.nse:231>
        (...tail calls...)
NSE: Waiting: 'daytime' (thread: 05CE1DF0)
    stack traceback:
        [C]: in function 'connect'
        J:\pdf\nmap/nselib/comm.lua:48: in function 'setup_connect'
        J:\pdf\nmap/nselib/comm.lua:111: in function 'exchange'
        J:\pdf\nmap/scripts\daytime.nse:24: in function
<J:\pdf\nmap/scripts\daytime.nse:23>
        (...tail calls...)
NSE: Waiting: 'ms-sql-dac' (thread: 05FE8B58)
    stack traceback:
        [C]: in function 'mutex'
        J:\pdf\nmap/nselib/mssql.lua:2293: in function
'WasDiscoveryPerformed'
        J:\pdf\nmap/scripts\ms-sql-dac.nse:80: in function
<J:\pdf\nmap/scripts\ms-sql-dac.nse:73>
        (...tail calls...)

Is it just me being too impatient or something in the code is "chasing" its
tail?

Rgds,
   Alex

P.S. if you need to review the zenmap.* files from the TEMP dir just let me
know (the current zenmap-stdout-m81nnu is already ove 19 Mb.)
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/