Re: NMap 3.30 -O issues

["himicos" <himicos () freemail gr>]

Well, seeing a VxD getting involved, I would do the following:

Fire up DrWatson to see what is running at the time of the crash. Then I would
make a list of what is similar (software and hardware, like NICs, protocols,
services etc) in the two machines that crash and in what they differ from the
ones that don't. From these clues, you should make out what is causing the
problems.
> From where I stand, it could be the networking protocols, as it has been
mentioned before. Uninstalling and reinstalling them has solved many problems
for me.

just my 2p

himicos

----- Original Message -----
From: "cc" <cc () belfordhk com>
To: <nmap-dev () insecure org>
Sent: Wednesday, August 13, 2003 11:59 AM
Subject: NMap 3.30 -O issues


> Hi,
>
> I'm having some weird 'anomalies' with
> 3.30.  For two particular workstations
> during one of my security port checks,
> I managed to crash these two workstations
> using the 'nmap -O' command.  I
> get a BSOD when I run the command.
>
> The workstations (both) run Win98 under
> a Novell netware client setup.
>
> The BSOD shows:
>
> An exception 0E has occurred at 0028:00000017
> in VxD ---.  This was called from 0028:C001C404
> in VxD NDIS(01) + 00004860.
>
> *********
>
> I'm curious as to whether or not this means
> the drivers are screwed up or something
> else is happening.  After crashing the
> system, here's what I get from Nmap
> 3.30 (and Nmap win 1.10 using V2.54beta31):
>
> Starting nmap V. 2.54BETA31 ( www.insecure.org/nmap )
> Interesting ports on Station7 (192.168.9.7):
> (The 1063 ports scanned but not shown below are in
> state: closed)
> Port State Service
> 2/tcp filtered compressnet
> 3/tcp filtered compressnet
> ...
>
> and up to
>
> 61441/tcp filtered netprowler-sensor
>
> Nmap run completed -- 1 IP address (1 host up) scanned in 120 seconds.
>
> I run nmap 3.30 from a Linux 2.4.21 workstation.  I ran NMapWin 1.10
> from a W2KPro station.
>
> The curious thing is, these two workstations aren't the only
> ones using Win98.  There's at least two more which use
> Win98, but don't BSOD on me.  It's these two particular
> ones that do.
>
> Can someone point out (short of reinstalling Windows) how I
> might solve this issue?
>
> Thanks.



____________________________________________________________________
http://www.freemail.gr - äùñåÜí õðçñåóßá çëåêôñïíéêïý ôá÷õäñïìåßïõ.
http://www.freemail.gr - free email service for the Greek-speaking.

---------------------------------------------------------------------
For help using this (nmap-dev) mailing list, send a blank email to 
nmap-dev-help () insecure org . List run by ezmlm-idx (www.ezmlm.org).