Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

imap-capabilities gets spurious capabilities from following OK line

From: David Fifield <david () bamsoftware com>
Date: Sun, 28 Jun 2015 08:55:52 -0700
Here's a run of imap-capabilities against the Gmail imaps server. Notice
the jumbled "Thats all she wrote" among the capabilities and "OK" and
"gm9mb409695764pbc".

$ ./nmap -Pn --script imap-capabilities imap.gmail.com -p imaps --packet-trace
Nmap scan report for imap.gmail.com (74.125.20.108)
PORT    STATE SERVICE
993/tcp open  imaps
|_imap-capabilities: AUTH=XOAUTH2 QUOTA XYZZY NAMESPACE IDLE CHILDREN Thats wrote X-GM-EXT-1 ID she all 
AUTH=XOAUTHA0001 AUTH=PLAIN-CLIENTTOKEN OK gm9mb409695764pbc XLIST AUTH=PLAIN SASL-IR IMAP4rev1 UNSELECT

It seems to be reading too much into the capabilities. Here is a
transcript, edited from --packet-trace:

< * OK Gimap ready for requests from X.X.X.X gm9mb409695764pbc

A0001 CAPABILITY

< * CAPABILITY IMAP4rev1 UNSELECT IDLE NAMESPACE QUOTA ID XLIST CHILDREN X-GM-EXT-1 XYZZY SASL-IR AUTH=XOAUTH2 
AUTH=PLAIN AUTH=PLAIN-CLIENTTOKEN AUTH=XOAUTH
< A0001 OK Thats all she wrote! gm9mb409695764pbc
_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: