Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

nping: abort in new

From: Gisle Vanem <gvanem () broadpark no>
Date: Sun, 08 Jan 2012 10:24:25 +0100
The "NpingTargets::processSpecs()" seems to mishandle
a CIDR-style target. E.g.
 nping.exe --tcp-connect -p80 -d4 -v4 www.vg.no/2

issues abort() inside new. Seems that the 'NpingTargets::specs'
is overrun. My C++ is a bit rusty. Call-stack:

kernel32!RaiseException+0x53
MSVCR100D!_CxxThrowException+0x52
MSVCR100D!operator new+0x77
nping!NpingTargets::processSpecs+0xbe    << !!  see below.
nping!main+0x155
nping!__tmainCRTStartup+0x1bf
nping!mainCRTStartup+0xf
kernel32!BaseProcessStart+0x23

 /* Get next host IP address and, if it is a named host, its hostname */
 while ( this->getNextTargetAddressAndName(&ss, &slen, buff, MAX_NPING_HOSTNAME_LEN) == OP_SUCCESS ){
     NpingTarget *mytarget = new NpingTarget();

This works as expected:
 nping.exe --tcp-connect -p80 -d4 -v4 www.vg.no/20

--gv
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: