Nmap Development mailing list archives
[NSE] Problems with authentication in ms-sql in Nmap 7.91+
From: Paulino Calderon <paulino () calderonpale com>
Date: Fri, 14 Jan 2022 12:08:46 -0500
Hey,I was wondering if anyone familiar with the MS-SQL protocol knows what might be happening here. The dev branch version crashes at the moment when scanning Microsoft SQL Server 2005 9.00.3042; SP2:
NSE: [ms-sql-brute M:b41d0c xx.xx.xx.xx] MSSQL-SSRP: SSRP Data: ServerName;XXXX;InstanceName;MSSQLSERVER;IsClustered;No;Version;9.00.3042.00;tcp;1433;;
NSE: [ms-sql-brute M:b41d0c xx.xx.xx.xx] MSSQL-SSRP: SSRP Substrings: ServerName;XXXX;InstanceName;MSSQLSERVER;IsClustered;No;Version;9.00.3042.00;tcp;1433;; NSE: [ms-sql-brute M:b41d0c xx.xx.xx.xx] brandedVersion: 2005, #lookup: 5 NSE: UDP 10.0.4.152:48503 > xx.xx.xx.xx:1434 | CLOSE NSOCK INFO [1.5680s] nsock_iod_delete(): nsock_iod_delete (IOD #1) NSOCK DEBUG [1.5680s] nsock_set_loglevel(): Set log level to FULL DEBUGNSOCK DEBUG [1.5700s] nsock_loop(): nsock_loop() started (timeout=50ms). 0 events pending
NSE: Starting ms-sql-brute M:fe2ad4 against xx.xx.xx.xx:1433. NSE: [ms-sql-brute M:fe2ad4 xx.xx.xx.xx:1433] TARGET INSTANCESnil NSE: ms-sql-brute M:fe2ad4 against xx.xx.xx.xx:1433 threw an error! attempt to index a nil value stack traceback: [C]: in for iterator 'for iterator'/usr/local/bin/../share/nmap/nselib/mssql.lua:3305: in function </usr/local/bin/../share/nmap/nselib/mssql.lua:3297>
(...tail calls...)I think this might be related to https://github.com/nmap/nmap/issues/2388 because the password is also using the character @.
Cheers. _______________________________________________ Sent through the dev mailing list https://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] Problems with authentication in ms-sql in Nmap 7.91+ Paulino Calderon (Jan 14)