Nmap Development mailing list archives

Re: broadcast-dropbox-listener script is broken in 6.25 and SVN

From: Daniel Miller <bonsaiviking () gmail com>
Date: Mon, 17 Dec 2012 17:35:32 -0600

On 12/15/2012 01:57 AM, David Fifield wrote:

On Tue, Dec 11, 2012 at 11:16:36PM +0530, Dhiru Kholia wrote:

broadcast-dropbox-listener script is broken in 6.25 and SVN.

Command used:  nmap -d -p17500 --script-trace
--script=broadcast-dropbox-listener --script-args=newtargets -Pn

1. broadcast-dropbox-listener script worked best under Nmap 5.51

Pre-scan script results:
| broadcast-dropbox-listener:
| displayname  ip             port   version  host_int   namespaces
|_429883020    192.168.2.253  17500  1.8      429883020  194083623
Nmap scan report for 192.168.2.253
Host is up (0.0054s latency).
PORT      STATE SERVICE

Newer version like 6.0 don't show "Pre-scan script results" which is
super useful.

2. broadcast-dropbox-listener script works partially under Nmap 6.00

Nmap scan report for 192.168.2.253
Host is up (0.0054s latency).
PORT      STATE SERVICE
17500/tcp open  db-lsp

3. broadcast-dropbox-listener script is broken in 6.25 and SVN
...
NSE: Script Pre-scanning.
NSE: Starting runlevel 1 (of 1) scan.
NSE: Starting broadcast-dropbox-listener.
Initiating NSE at 23:11
NSOCK (0.0470s) nsi_new (IOD #1)
NSOCK (0.0470s) UDP unconnected socket (IOD #1)
NSOCK (0.0620s) Read request from IOD #1 (peer unspecified) (timeout:
40000ms) EID 10
NSE Timing: About 0.00% done
NSOCK (40.0620s) Callback: READ TIMEOUT for EID 10 (peer unspecified)
NSE: N/A unknown protocol:0 > unknown protocol:0 | CLOSE
NSOCK (40.0730s) nsi_delete (IOD #1)
NSE: Finished broadcast-dropbox-listener.
Completed NSE at 23:12, 40.01s elapsed
NSOCK (40.0730s) nsi_new (IOD #2)
NSOCK (40.0730s) UDP unconnected socket (IOD #2)
NSE: N/A unknown protocol:0 > unknown protocol:0 | CLOSE
NSOCK (40.0730s) nsi_delete (IOD #2)

Reverting commit "2404fc7d647" partially fixes the problem and we get
behaviour similar to point 2.

However, it would be best if we could get  "Pre-scan script results"
too. "host_int" value is useful in "hijacking" Dropbox accounts.

Please try r30396. The earlier change r30396 had a bug that caused an
unconnected UDP socket to be set up prematurely, before NSE could bind
it to a port.

David Fifield
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

In addition to this, there was a bug related to the deprecation of maxnin Lua 5.2. Fixed in r30428


Dan
_______________________________________________
Sent through the dev mailing list
http://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/

Current thread:

broadcast-dropbox-listener script is broken in 6.25 and SVN Dhiru Kholia (Dec 11)
- Re: broadcast-dropbox-listener script is broken in 6.25 and SVN David Fifield (Dec 11)
  - Re: broadcast-dropbox-listener script is broken in 6.25 and SVN Dhiru Kholia (Dec 11)
    - Re: broadcast-dropbox-listener script is broken in 6.25 and SVN Dhiru Kholia (Dec 11)
    - Re: broadcast-dropbox-listener script is broken in 6.25 and SVN Dhiru Kholia (Dec 11)
- Re: broadcast-dropbox-listener script is broken in 6.25 and SVN Daniel Miller (Dec 11)
  - Re: broadcast-dropbox-listener script is broken in 6.25 and SVN David Fifield (Dec 11)
- Re: broadcast-dropbox-listener script is broken in 6.25 and SVN David Fifield (Dec 14)
  - Re: broadcast-dropbox-listener script is broken in 6.25 and SVN Daniel Miller (Dec 17)