Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: [nmap-svn] r12345 - in nmap: nselib scripts

From: Ron <ron () skullsecurity net>
Date: Fri, 27 Feb 2009 15:05:31 -0600
Congrats to Nmap on commit 12345. :)

(sorry for noise, but I consider it a major landmark :D)

Ron

commit-mailer () insecure org wrote:

Author: david
Date: Fri Feb 27 12:16:29 2009
New Revision: 12345

Modified:
   nmap/nselib/dns.lua
   nmap/scripts/dns-zone-transfer.nse

Log:
In dns-zone-transfer.nse, return "<parse error>" in case domain decoding fails.
otherwise there is an assertion failure trying to insert a nil into an output
table in tab.lua. Increase the maximum number of message compression pointers
we will follow in dns.lua from 3 to 10, because Brandon found a server that
used 4..


Modified: nmap/nselib/dns.lua
==============================================================================
--- nmap/nselib/dns.lua (original)
+++ nmap/nselib/dns.lua Fri Feb 27 12:16:29 2009
@@ -486,7 +486,7 @@
       local part
-- Avoid infinite recursion on malformed compressed messages. 
-      limit = limit or 3
+      limit = limit or 10
       if limit < 0 then
          return pos, nil
       end

Modified: nmap/scripts/dns-zone-transfer.nse
==============================================================================
--- nmap/scripts/dns-zone-transfer.nse  (original)
+++ nmap/scripts/dns-zone-transfer.nse  Fri Feb 27 12:16:29 2009
@@ -123,7 +123,9 @@
 --@param data String of data.
 --@param offset Offset in the string to read the domain name.
 function parse_domain(data, offset)
-       return dns.decStr(data, offset)
+       local offset, domain = dns.decStr(data, offset)
+       domain = domain or "<parse error>"
+       return offset, domain
end --- Build RFC 1035 root domain name from the name of the DNS server 

_______________________________________________
Sent through the nmap-svn mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-svn


_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org
Previous By Date Next
Previous By Thread Next

Current thread: