Re: Ncrack Error.

[ithilgore <ithilgore.ryu.l () gmail com>]

Gallagher Chris wrote:
> Please see the listing:
> ============================================
> W:\CG\ncrack>ncrack 172.16.251.1-100:22,CL=1,at=1 -oN scan251.txt -v
> -d10
> Warning: File ./default.usr exists, but Ncrack is using C:\Program
> Files\Ncrack\lists\default.usr for security and consistency reasons. Set
> NCRACKDIR=. to give
> priority to files in your local directory (may affect the other data
> files too).
> Fetchfile found C:\Program Files\Ncrack\lists\default.usr
> Fetchfile found C:\Program Files\Ncrack\lists\default.pwd
>
> Starting Ncrack 0.01ALPHA ( http://ncrack.org ) at 2009-08-20 13:59 GMT
> Daylight Time
>
> ssh://172.16.251.1:22 Initiating new Connection
....
> ssh://172.16.251.96:22 pushed to list FULL
> ssh://172.16.251.64:22 pushed to list FULL
> Assertion failed: bytesleft > 0, file .\src\nsock_core.c, line 474
>
> This application has requested the Runtime to terminate it in an unusual
> way.
> Please contact the application's support team for more information.
>
> ==============================================================
> Thanks for the tool, it looks very promising.
> Good luck with the future development.
>
> Chris Gallagher

Hello Chris and thanks for the bug report.
Since I wasn't able to reproduce the error in my Windows XP SP3 box, could you provide some
additional info about the attacked systems and your running host?

1) Did all these IP addresses have a SSH server listening on them? 
2) Are they running OpenSSH or some other version perhaps?
3) Is the error also reproduced when running it against one particular host in your subnet?
4) What Windows version is your attacking host? 
5) Did you use the 0.01ALPHA release Windows setup installer from Ncrack's website?

Thanks,
ithilgore




_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://SecLists.Org