Got an error while running ssl-enum-ciphers

[Jorge Luis Sanz Amerijeiras <jlsanza () axpe com>]

Hello, another try, but now I'm subscribed :) :)


I'm getting some errors while running nmap with --script ssl-enum-ciphers.

Maybe the domain name is too long? It has 24 chars in total, including dots. Estructure is:
xxxxxxx.xxxxxxxxx.xxx.xx

Nmap vers: 7.70, over kali lnux.
nmap -d --script ssl-enum-ciphers -p 11443 xxxxx.xxxxxxxx.xx.xx
nmap -d --script ssl-enum-ciphers -p 443 xxxxx.xxxxxxxx.xx.xx

Both ports have the same result:
..
..
..
Initiating NSE at 09:33
NSE: Starting ssl-enum-ciphers against xxxxx.xxxxxxxx.xx.xx (xxxxxxx:11443).
NSE: [ssl-enum-ciphers xxxxxx:11443] Trying protocol TLSv1.1.
NSE: [ssl-enum-ciphers xxxxxx:11443] Trying protocol SSLv3.
NSE: [ssl-enum-ciphers xxxxxx:11443] Trying protocol TLSv1.0.
NSE: [ssl-enum-ciphers xxxxxx:11443] Trying protocol TLSv1.2.
NSE: ssl-enum-ciphers against xxxxxx.xxxxxx.xxxxxx.xx (xxxxxx:11443) threw an error!
/usr/bin/../share/nmap/nselib/tls.lua:1209: bad argument #2 to 'unpack' (data string too short)
stack traceback:
 [C]: in function 'string.unpack'
 /usr/bin/../share/nmap/nselib/tls.lua:1209: in local 'parser'
 /usr/bin/../share/nmap/nselib/tls.lua:1270: in local 'parser'
 /usr/bin/../share/nmap/nselib/tls.lua:1309: in function 'tls.parse_messages'
 /usr/bin/../share/nmap/nselib/tls.lua:1369: in function 'tls.record_read'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:339: in local 'get_next_record'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:391: in upvalue 'try_params'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:603: in upvalue 'find_ciphers_group'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:811: in upvalue 'find_ciphers'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:987: in function 
</usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:981>
NSE: ssl-enum-ciphers against xxxxx.xxxxxxxx.xx.xx (xxxxxx:11443) threw an error!
/usr/bin/../share/nmap/nselib/tls.lua:1209: bad argument #2 to 'unpack' (data string too short)
stack traceback:
 [C]: in function 'string.unpack'
 /usr/bin/../share/nmap/nselib/tls.lua:1209: in local 'parser'
 /usr/bin/../share/nmap/nselib/tls.lua:1270: in local 'parser'
 /usr/bin/../share/nmap/nselib/tls.lua:1309: in function 'tls.parse_messages'
 /usr/bin/../share/nmap/nselib/tls.lua:1369: in function 'tls.record_read'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:339: in local 'get_next_record'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:391: in upvalue 'try_params'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:603: in upvalue 'find_ciphers_group'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:811: in upvalue 'find_ciphers'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:987: in function 
</usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:981>
NSE: ssl-enum-ciphers against xxxxx.xxxxx.xxxx.xx (xxxxxx:11443) threw an error!
/usr/bin/../share/nmap/nselib/tls.lua:1209: bad argument #2 to 'unpack' (data string too short)
stack traceback:
 [C]: in function 'string.unpack'
 /usr/bin/../share/nmap/nselib/tls.lua:1209: in local 'parser'
 /usr/bin/../share/nmap/nselib/tls.lua:1270: in local 'parser'
 /usr/bin/../share/nmap/nselib/tls.lua:1309: in function 'tls.parse_messages'
 /usr/bin/../share/nmap/nselib/tls.lua:1369: in function 'tls.record_read'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:339: in local 'get_next_record'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:391: in upvalue 'try_params'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:603: in upvalue 'find_ciphers_group'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:811: in upvalue 'find_ciphers'
 /usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:987: in function 
</usr/bin/../share/nmap/scripts/ssl-enum-ciphers.nse:981>
..
..
..


Note: The output without the debugging option mention nothing about TLS's found, just say https service fount in port. 
Other tools as testssl.sh detect offered TLS's so looks like they are there.


Best regards


________________________________
Este mensaje de correo electrónico y sus documentos adjuntos están dirigidos exclusivamente a los destinatarios 
especificados. La información contenida puede ser confidencial y/o estar legalmente protegida y no necesariamente 
refleja la opinión de AXPE Consulting. Si usted recibe este mensaje por error, por favor comuníqueselo inmediatamente 
al remitente y elimínelo ya que usted no está autorizado al uso, revelación, distribución, impresión o copia de toda o 
alguna parte de la información contenida. Gracias.

This e-mail message and any attached files are intended solely for the address/es identified herein. It may contain 
confidential and/or legally privileged information and may not necessarily represent the opinion of AXPE Consulting. If 
you receive this message in error, please immediately notify the sender and delete it since you are not authorized to 
use, disclose, distribute, print or copy all or part of the contained information.

_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/