Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

[NSE] new script - http-vlc

From: Alex Weber <alexwebr () gmail com>
Date: Thu, 26 Jul 2012 05:25:46 -0700
Hi list,

https://raw.github.com/AlexWebr/nse/master/http-vlc.nse

Looks for VLC with an open web interface and tries to get the title/artist
of the currently playing media. Also detects an old VLC bug - in version
1.* (fixed now), if you enabled web access, the default access list
specified local connections only, but the (XML) API was still accessible
remotely.

-- @output
-- PORT   STATE SERVICE
-- 80/tcp open  http
-- 8080/tcp open  http-proxy
-- | http-vlc:
-- |   VLC web interface (XML API) found
-- |   Old/insecure version of VLC! XML API access available,
-- |   even though web interface is configured for local access only.
-- |_  -> Nothing playing right now

Comments welcome - this was written at 3am, and could very well be
unneeded/stupid/incomplete.
Thanks for looking.

-Alex
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: