Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

[NSE] Check for Samba DoS

From: Ron <ron () skullsecurity net>
Date: Sat, 15 May 2010 11:25:34 -0500
Hey,

I implemented a check this morning for the following vulnerability:
http://seclists.org/fulldisclosure/2010/May/145

I've attached a .patch for it. My Samba server is well within the "vulnerable" scope, but I can't get the vulnerability 
to trigger (even with the PoC code from that link) -- can somebody running an older version of Samba check it out for 
me?

Here is how I'm running it:
nmap -n -d -p445 --script=smb-check-vulns --script-args=unsafe=1 <target>

And the patch *has* to be against the latest svn version (I committed some changes this morning that are required). 

-- 
Ron Bowes
http://www.skullsecurity.org
http://www.twitter.com/iagox86

Attachment: samba_dos.patch
Description:

Attachment: _bin
Description: 

_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: