Nmap Development mailing list archives
nmap's service discovery crashable
From: Jacek Wielemborek <d33tah () gmail com>
Date: Tue, 15 Apr 2014 15:57:26 +0200
Hello, While trying to trick Nmap into printing non-ASCII characters from the payloads in service discovery mode, I stumbled upon a bug. Here's how to reproduce it: ncat -l 31337 -k --sh-exec "/bin/echo -en '\x00\x03sok\0.n\0\0\x33\x33\x33\x33\x33\x33\x33\x33'" & nmap localhost -p 31337 -sV --version-intensity 9 Yours, Jacek Wielemborek
Attachment:
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Sent through the dev mailing list http://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- nmap's service discovery crashable Jacek Wielemborek (Apr 15)
- Re: nmap's service discovery crashable Jacek Wielemborek (Apr 15)
- Re: nmap's service discovery crashable Daniel Miller (Apr 15)
- Re: nmap's service discovery crashable Daniel Miller (Apr 15)
- Re: nmap's service discovery crashable Daniel Miller (Apr 15)
- Re: nmap's service discovery crashable Daniel Miller (Apr 15)
- Re: nmap's service discovery crashable Jacek Wielemborek (Apr 15)