Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Nessus-Users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Plugins 18027 and 18028 - follow-up

from [Chad I. Uretsky] Network Security [Permanent Link]
Subject: RE: Plugins 18027 and 18028 - follow-up
Date: Thu, 16 Jun 2005 18:30:39 -0000 
The issue I have been having is running on FreeBSD 5.3.  I installed Nessus
2.2.4 on my FreeBSD 4.10 machine, and the plugins appear to work from there.
Could it be something in the OS version?  Is anyone else running Nessus on
FreeBSD 5.3 and having trouble with plugins 18027 and 18028?

Thanks.

Chad


-----Original Message-----
From: nessus-bounces@list.nessus.org [mailto:nessus-bounces@list.nessus.org]
On Behalf Of Chad I. Uretsky
Sent: Tuesday, June 14, 2005 8:35 AM
To: 'George A. Theall'; 'nessus@list.nessus.org'
Subject: RE: Plugins 18027 and 18028


Yes, sorry, something did show up, but it did not appear significant or
necessarily related.  After changing report paranoia to paranoid, enabling
debugging in plugin 12213, and setting the port range to 139,445, I still
get no hosts reported as vulnerable.  Here is what I get in nessusd.message
and nessusd.dump:

============
Nessusd.dump:
============
sysctl: unknown oid 'fs.file-nr'
sysctl: unknown oid 'fs.file-max'
sysctl: unknown oid 'fs.file-nr'
sysctl: unknown oid 'fs.file-nr'
sysctl: unknown oid 'fs.file-max'
sysctl: unknown oid 'fs.file-max'




============
Nessusd.message:
==============
[Tue Jun 14 13:23:15 2005][49180] connection from 127.0.0.1 
[Tue Jun 14 13:23:15 2005][53016] Client requested protocol version 12. 
[Tue Jun 14 13:23:16 2005][53016] successful login of xxxxx from 127.0.0.1 
[Tue Jun 14 13:23:34 2005][53016] Redirecting debugging output to
/usr/local/var/nessus/logs/nessusd.dump 
[Tue Jun 14 13:23:37 2005][53016] user xxxxx starts a new scan. Target(s) :
xxxxxx,xxxxxx,xxxxxx, with max_hosts = 128 and max_checks = 1 
[Tue Jun 14 13:23:37 2005][53016] user xxxxx : testing xxxxxx (xx.xx.xx.xx)
[53031] 
[Tue Jun 14 13:23:37 2005][53016] user xxxxx : testing xxxxxx (xx.xx.xx.xx)
[53032] 
[Tue Jun 14 13:23:37 2005][53016] user xxxxx : testing xxxxxx (xx.xx.xx.xx)
[53034] 
[Tue Jun 14 13:23:37 2005][53031] user xxxxx : launching ping_host.nasl
against xxxxxx [53036] 
[Tue Jun 14 13:23:37 2005][53032] user xxxxx : launching ping_host.nasl
against xxxxxx [53037] 
[Tue Jun 14 13:23:37 2005][53034] user xxxxx : launching ping_host.nasl
against xxxxxx [53038] 
[Tue Jun 14 13:23:40 2005][53031] ping_host.nasl (process 53036) finished
its job in 3.415 seconds 
[Tue Jun 14 13:23:40 2005][53031] user xxxxx : launching ssh_settings.nasl
against xxxxxx [53052] 
[Tue Jun 14 13:23:40 2005][53031] ssh_settings.nasl (process 53052) finished
its job in 0.015 seconds 
[Tue Jun 14 13:23:40 2005][53031] user xxxxx : launching
nessus_tcp_scanner.nes against xxxxxx [53053] 
[Tue Jun 14 13:23:40 2005][53032] ping_host.nasl (process 53037) finished
its job in 3.425 seconds 
[Tue Jun 14 13:23:40 2005][53032] user xxxxx : launching ssh_settings.nasl
against xxxxxx [53054] 
[Tue Jun 14 13:23:40 2005][53034] ping_host.nasl (process 53038) finished
its job in 3.445 seconds 
[Tue Jun 14 13:23:40 2005][53034] user xxxxx : launching ssh_settings.nasl
against xxxxxx [53056] 
[Tue Jun 14 13:23:40 2005][53034] ssh_settings.nasl (process 53056) finished
its job in 0.022 seconds 
[Tue Jun 14 13:23:40 2005][53032] ssh_settings.nasl (process 53054) finished
its job in 0.045 seconds 
[Tue Jun 14 13:23:40 2005][53034] user xxxxx : launching
nessus_tcp_scanner.nes against xxxxxx [53061] 
[Tue Jun 14 13:23:40 2005][53032] user xxxxx : launching
nessus_tcp_scanner.nes against xxxxxx [53060] 
[Tue Jun 14 13:23:45 2005][53031] nessus_tcp_scanner.nes (process 53053)
finished its job in 5.172 seconds 
[Tue Jun 14 13:23:45 2005][53031] user xxxxx : launching
netstat_portscan.nasl against xxxxxx [53088] 
[Tue Jun 14 13:23:45 2005][53031] netstat_portscan.nasl (process 53088)
finished its job in 0.027 seconds 
[Tue Jun 14 13:23:45 2005][53031] user xxxxx : launching TLD_wildcard.nasl
against xxxxxx [53089] 
[Tue Jun 14 13:23:45 2005][53031] TLD_wildcard.nasl (process 53089) finished
its job in 0.012 seconds 
[Tue Jun 14 13:23:45 2005][53031] user xxxxx : launching
netbios_name_get.nasl against xxxxxx [53090] 
[Tue Jun 14 13:23:45 2005][53034] nessus_tcp_scanner.nes (process 53061)
finished its job in 5.180 seconds 
[Tue Jun 14 13:23:45 2005][53032] nessus_tcp_scanner.nes (process 53060)
finished its job in 5.179 seconds 
[Tue Jun 14 13:23:46 2005][53034] user xxxxx : launching
netstat_portscan.nasl against xxxxxx [53091] 
[Tue Jun 14 13:23:46 2005][53032] user xxxxx : launching
netstat_portscan.nasl against xxxxxx [53092] 
[Tue Jun 14 13:23:46 2005][53031] netbios_name_get.nasl (process 53090)
finished its job in 0.042 seconds 
[Tue Jun 14 13:23:46 2005][53031] user xxxxx : launching tcp_seq_window.nasl
against xxxxxx [53093] 
[Tue Jun 14 13:23:46 2005][53032] netstat_portscan.nasl (process 53092)
finished its job in 0.051 seconds 
[Tue Jun 14 13:23:46 2005][53032] user xxxxx : launching TLD_wildcard.nasl
against xxxxxx [53094] 
[Tue Jun 14 13:23:46 2005][53034] netstat_portscan.nasl (process 53091)
finished its job in 0.102 seconds 
[Tue Jun 14 13:23:46 2005][53032] TLD_wildcard.nasl (process 53094) finished
its job in 0.015 seconds 
[Tue Jun 14 13:23:46 2005][53034] user xxxxx : launching TLD_wildcard.nasl
against xxxxxx [53095] 
[Tue Jun 14 13:23:46 2005][53032] user xxxxx : launching
netbios_name_get.nasl against xxxxxx [53096] 
[Tue Jun 14 13:23:46 2005][53034] TLD_wildcard.nasl (process 53095) finished
its job in 0.015 seconds 
[Tue Jun 14 13:23:46 2005][53034] user xxxxx : launching
netbios_name_get.nasl against xxxxxx [53097] 
[Tue Jun 14 13:23:46 2005][53032] netbios_name_get.nasl (process 53096)
finished its job in 0.044 seconds 
[Tue Jun 14 13:23:46 2005][53032] user xxxxx : launching tcp_seq_window.nasl
against xxxxxx [53098] 
[Tue Jun 14 13:23:46 2005][53034] netbios_name_get.nasl (process 53097)
finished its job in 0.041 seconds 
[Tue Jun 14 13:23:46 2005][53034] user xxxxx : launching tcp_seq_window.nasl
against xxxxxx [53099] 
[Tue Jun 14 13:23:47 2005][53031] tcp_seq_window.nasl (process 53093)
finished its job in 1.445 seconds 
[Tue Jun 14 13:23:47 2005][53031] user xxxxx : launching
smb_nativelanman.nasl against xxxxxx [53101] 
[Tue Jun 14 13:23:47 2005][53031] smb_nativelanman.nasl (process 53101)
finished its job in 0.037 seconds 
[Tue Jun 14 13:23:47 2005][53031] user xxxxx : launching smb_kb835732.nasl
against xxxxxx [53102] 
[Tue Jun 14 13:23:47 2005][53031] user xxxxx : Not launching
smb_kb893066.nasl against xxxxxx because the key TCP/seq_window_flaw is
missing (this is not an error) 
[Tue Jun 14 13:23:47 2005][53031] smb_kb835732.nasl (process 53102) finished
its job in 0.055 seconds 
[Tue Jun 14 13:23:47 2005][53031] user xxxxx : launching
messenger_ms03-043.nasl against xxxxxx [53103] 
[Tue Jun 14 13:23:47 2005][53034] tcp_seq_window.nasl (process 53099)
finished its job in 1.418 seconds 
[Tue Jun 14 13:23:47 2005][53034] user xxxxx : launching
smb_nativelanman.nasl against xxxxxx [53104] 
[Tue Jun 14 13:23:47 2005][53034] smb_nativelanman.nasl (process 53104)
finished its job in 0.038 seconds 
[Tue Jun 14 13:23:47 2005][53034] user xxxxx : launching smb_kb835732.nasl
against xxxxxx [53105] 
[Tue Jun 14 13:23:47 2005][53034] user xxxxx : Not launching
smb_kb893066.nasl against xxxxxx because the key TCP/seq_window_flaw is
missing (this is not an error) 
[Tue Jun 14 13:23:47 2005][53034] smb_kb835732.nasl (process 53105) finished
its job in 0.056 seconds 
[Tue Jun 14 13:23:47 2005][53034] user xxxxx : launching
messenger_ms03-043.nasl against xxxxxx [53106] 
[Tue Jun 14 13:23:53 2005][53031] messenger_ms03-043.nasl (process 53103)
finished its job in 5.516 seconds 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : launching
mssmtp_code_execution.nasl against xxxxxx [53108] 
[Tue Jun 14 13:23:53 2005][53031] mssmtp_code_execution.nasl (process 53108)
finished its job in 0.019 seconds 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : launching
windows_asn1_vuln_ntlm.nasl against xxxxxx [53109] 
[Tue Jun 14 13:23:53 2005][53031] windows_asn1_vuln_ntlm.nasl (process
53109) finished its job in 0.055 seconds 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : launching
msnntp_code_execution.nasl against xxxxxx [53110] 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : Not launching
mssql_litchfield_overflows.nasl against xxxxxx because the key
MSSQL/UDP/Ping is missing (this is not an error) 
[Tue Jun 14 13:23:53 2005][53034] messenger_ms03-043.nasl (process 53106)
finished its job in 5.512 seconds 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : launching
mssmtp_code_execution.nasl against xxxxxx [53111] 
[Tue Jun 14 13:23:53 2005][53031] msnntp_code_execution.nasl (process 53110)
finished its job in 0.042 seconds 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : launching msmqs_overflow.nasl
against xxxxxx [53112] 
[Tue Jun 14 13:23:53 2005][53034] mssmtp_code_execution.nasl (process 53111)
finished its job in 0.038 seconds 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : launching
windows_asn1_vuln_ntlm.nasl against xxxxxx [53113] 
[Tue Jun 14 13:23:53 2005][53031] msmqs_overflow.nasl (process 53112)
finished its job in 0.079 seconds 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : launching
mssql_brute_force.nasl against xxxxxx [53114] 
[Tue Jun 14 13:23:53 2005][53031] mssql_brute_force.nasl (process 53114)
finished its job in 0.038 seconds 
[Tue Jun 14 13:23:53 2005][53031] user xxxxx : launching
mssql_blank_password.nasl against xxxxxx [53115] 
[Tue Jun 14 13:23:53 2005][53031] mssql_blank_password.nasl (process 53115)
finished its job in 0.014 seconds 
[Tue Jun 14 13:23:53 2005][53034] windows_asn1_vuln_ntlm.nasl (process
53113) finished its job in 0.116 seconds 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : launching
msnntp_code_execution.nasl against xxxxxx [53116] 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : Not launching
mssql_litchfield_overflows.nasl against xxxxxx because the key
MSSQL/UDP/Ping is missing (this is not an error) 
[Tue Jun 14 13:23:53 2005][53034] msnntp_code_execution.nasl (process 53116)
finished its job in 0.042 seconds 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : launching msmqs_overflow.nasl
against xxxxxx [53117] 
[Tue Jun 14 13:23:53 2005][53031] Finished testing xxxxxx. Time : 16.18 secs

[Tue Jun 14 13:23:53 2005][53034] msmqs_overflow.nasl (process 53117)
finished its job in 0.053 seconds 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : launching
mssql_brute_force.nasl against xxxxxx [53118] 
[Tue Jun 14 13:23:53 2005][53034] mssql_brute_force.nasl (process 53118)
finished its job in 0.014 seconds 
[Tue Jun 14 13:23:53 2005][53034] user xxxxx : launching
mssql_blank_password.nasl against xxxxxx [53119] 
[Tue Jun 14 13:23:53 2005][53034] mssql_blank_password.nasl (process 53119)
finished its job in 0.013 seconds 
[Tue Jun 14 13:23:53 2005][53034] Finished testing xxxxxx. Time : 16.27 secs

[Tue Jun 14 13:24:02 2005][53032] tcp_seq_window.nasl (process 53098)
finished its job in 15.914 seconds 
[Tue Jun 14 13:24:02 2005][53032] user xxxxx : launching
smb_nativelanman.nasl against xxxxxx [53142] 
[Tue Jun 14 13:24:02 2005][53032] smb_nativelanman.nasl (process 53142)
finished its job in 0.036 seconds 
[Tue Jun 14 13:24:02 2005][53032] user xxxxx : launching smb_kb835732.nasl
against xxxxxx [53143] 
[Tue Jun 14 13:24:02 2005][53032] user xxxxx : Not launching
smb_kb893066.nasl against xxxxxx because the key TCP/seq_window_flaw is
missing (this is not an error) 
[Tue Jun 14 13:24:02 2005][53032] smb_kb835732.nasl (process 53143) finished
its job in 0.053 seconds 
[Tue Jun 14 13:24:02 2005][53032] user xxxxx : launching
messenger_ms03-043.nasl against xxxxxx [53144] 
[Tue Jun 14 13:24:07 2005][53032] messenger_ms03-043.nasl (process 53144)
finished its job in 5.517 seconds 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : launching
mssmtp_code_execution.nasl against xxxxxx [53146] 
[Tue Jun 14 13:24:07 2005][53032] mssmtp_code_execution.nasl (process 53146)
finished its job in 0.014 seconds 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : launching
windows_asn1_vuln_ntlm.nasl against xxxxxx [53147] 
[Tue Jun 14 13:24:07 2005][53032] windows_asn1_vuln_ntlm.nasl (process
53147) finished its job in 0.055 seconds 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : launching
msnntp_code_execution.nasl against xxxxxx [53148] 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : Not launching
mssql_litchfield_overflows.nasl against xxxxxx because the key
MSSQL/UDP/Ping is missing (this is not an error) 
[Tue Jun 14 13:24:07 2005][53032] msnntp_code_execution.nasl (process 53148)
finished its job in 0.028 seconds 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : launching msmqs_overflow.nasl
against xxxxxx [53149] 
[Tue Jun 14 13:24:07 2005][53032] msmqs_overflow.nasl (process 53149)
finished its job in 0.048 seconds 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : launching
mssql_brute_force.nasl against xxxxxx [53150] 
[Tue Jun 14 13:24:07 2005][53032] mssql_brute_force.nasl (process 53150)
finished its job in 0.014 seconds 
[Tue Jun 14 13:24:07 2005][53032] user xxxxx : launching
mssql_blank_password.nasl against xxxxxx [53151] 
[Tue Jun 14 13:24:07 2005][53032] mssql_blank_password.nasl (process 53151)
finished its job in 0.013 seconds 
[Tue Jun 14 13:24:07 2005][53032] Finished testing xxxxxx. Time : 30.66 secs

[Tue Jun 14 13:24:07 2005][53016] user xxxxx : test complete [Tue Jun 14
13:24:08 2005][53016] user xxxxx : Kept alive connection [Tue Jun 14
13:24:08 2005][53016] Communication closed by client 

Thanks for your help!

Chad



-----Original Message-----
From: nessus-bounces@list.nessus.org [mailto:nessus-bounces@list.nessus.org]
On Behalf Of George A. Theall
Sent: Monday, June 13, 2005 9:26 PM
To: nessus@list.nessus.org
Subject: Re: Plugins 18027 and 18028


On Fri, Jun 10, 2005 at 07:51:38PM -0000, Chad I. Uretsky
wrote:


Like others, I am getting the message, "Not launching 
smb_kb893066.nasl against xxxx because the key TCP/seq_window_flaw is 
missing (this is not an error)" when attempting to run plugin 18028 
against a machine which I know for a fact to have the vulnerability.

...

 I've turned on debugging both in the nessus.rc file (I've turned that 
back off now), and in the tcp_seq_windows.nasl plugin.  Nothing 
unusual showed up in the nessus.dump file.


Did anything show up? If so, what?


Does anyone have any thoughts one why this would happen or how to fix 
it?


Set report paranoia (under Global variable settings) to paranoid, enable
debugging in plugin 12213 itself, set the port range to "139,445" and rerun
the scan. Does this improve the result? If not, what do you see in
nessusd.dump?

George

--
theall@tenablesecurity.com _______________________________________________
Nessus mailing list
Nessus@list.nessus.org http://mail.nessus.org/mailman/listinfo/nessus
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org http://mail.nessus.org/mailman/listinfo/nessus
_______________________________________________
Nessus mailing list
Nessus@list.nessus.org
http://mail.nessus.org/mailman/listinfo/nessus
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Q: on Format String attacks, Renaud Deraison
Next by Date:  Re: Q: on Format String attacks, Michel Arboi
Previous by Thread:  RE: Plugins 18027 and 18028 - follow-up, Chad I. Uretsky
Next by Thread:  Re: Plugins 18027 and 18028 - follow-up, Nicolas Pouvesle
Indexes:  [Date] [Thread] [Top] [All Lists]