[BUG] add_dns_server() adds bogus IPv4 nameserver address

[jah <jah () zadkiel plus com>]

Hi folks,

I'm trying to get to the bottom of a bug and I'm posting because I've a
feeling that someone will instantly recognise the problem. Hopefully.
I found it with:
nmap -sP -PN -n -d --script=asn-query <host>

...
NSE: dns.query() got zero responses attempting to resolve query:
<tsoh>.nmap.asn.cymru.com
...

The dns server contacted is _always_ 2.0.0.0

The issue seems to stem somewhere in nmap_dns.cc add_dns_server() after
dns.lua requests a list of nameservers known to nmap.
More specifically the call to resolve() doesn't fail, but the
sockaddr_storage is incorrectly filled (there are two null chars
preceding the IPv4 address).  This happens in tcpip.cc resolve() in the
call to getaddrinfo(), but for the life of me, I cannot tell why.

This happens on both win32 and linux.

Thoughts?

Regards,

jah
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/