Nmap Development mailing list archives

Re: Update Nmap NSE scripts - was: nse error

From: Patrik Karlsson <patrik () cqure net>
Date: Tue, 10 Jan 2012 19:44:58 +0100

On Tue, Jan 10, 2012 at 6:12 PM, Verde Denim <tdldev () gmail com> wrote:

On Tue, Jan 10, 2012 at 11:41 AM, Henri Doreau <henri.doreau () gmail com

wrote:

Hi,

2012/1/10 Verde Denim <tdldev () gmail com>:

Thanks, Djalal. I've updated to 5.61 (well at least got the tarball and
compiled/built it). Since I'm running the repo version I need to config

the

directories correctly, but it does run the scripts now.

unless I misunderstood what you said, you're running scripts from the
svn trunk with a given release of nmap? In order to stay synced and
avoid inconsistencies you should probably use the trunk for everything
then.

Regards.

Henri

I have a repo-installed version on my Ubuntu machine (not from svn) that is
older. I upgraded to the 5.61 version (svn) and the oracle-sid-brute nse
now works,so it would seem that I have the corrected (updated) versions
running together.

On a somewhat related note, however, running the oracle-enum-users script
produces
ORA-03146: Invalid buffer length for TTC field, which (according to the
Oracle docs) is a corrupt two-task common packet received. It is described
as an internal protocol error, but I would hesitate to believe that the
Oracle installation is at fault. I've run the enum nse with trace on, but
it doesn't seem to get very far into the script before this error shows. I
cannot find any other info on this error related to the nse script, so
hopefully someone on this list can shed some light on why this is
happening...

Regards

Jack
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


Hi Jack,

The Oracle TNS protocol is implemented from scratch in Nmap and due to the
scarce documentation relies on some heavy guesswork in some places. I've
had some trouble in the past with different platforms and architectures and
have tried to document what works and what doesn't in the tns.lua library
file. In order to look into the problem and try to fix it I need the
following information:
* The platform (Linux,Windows,Solaris) your running Oracle
* The exact version and architecture

Also a pcap capture from the script and one from a normal login using
sqlplus would help a lot.
Feel free to send me the information off-list if you prefer.

Cheers,
Patrik
-- 
Patrik Karlsson
http://www.cqure.net
http://twitter.com/nevdull77
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/

Current thread:

nse error Verde Denim (Jan 10)
- Re: Update Nmap NSE scripts - was: nse error Djalal Harouni (Jan 10)
  - Re: Update Nmap NSE scripts - was: nse error Verde Denim (Jan 10)
    - Re: Update Nmap NSE scripts - was: nse error Henri Doreau (Jan 10)
    - Re: Update Nmap NSE scripts - was: nse error Verde Denim (Jan 10)
    - Re: Update Nmap NSE scripts - was: nse error Patrik Karlsson (Jan 10)
- Re: nse error Toni Ruottu (Jan 10)
  - Re: nse error Verde Denim (Jan 11)
    - Re: nse error David Fifield (Jan 11)
    - Re: nse error Patrik Karlsson (Jan 11)
    - Re: nse error Djalal Harouni (Jan 11)