Nmap Development: Apparent Bug in Nmap (original) (raw)
Nmap Developmentmailing list archives
From: "sbammel" <sbammel () riogrande edu>
Date: Thu, 4 Jun 2009 11:38:03 -0500
Gentlemen:
The following is relevant data for that which appears clear to me is a bug in Nmap. Thanks for a fine program.
Test #1: (gives correct results)
Nmap Command: c:\Temp\nmap>nmap -sP 10.11.0.1 10.11.0.2 Starting Nmap 4.85BETA9 ( http://nmap.org ) at 2009-06-04 11:19 Central Daylight Time Nmap done: 2 IP addresses (0 hosts up) scanned in 5.14 seconds
Ethereal Output: No. Time Source Destination Protocol Info 1 0.000000 10.10.0.81 10.11.0.2 TCP 51666 > http [ACK] Seq=0 Ack=0 Win=2048 Len=0 2 0.004446 10.10.0.81 10.11.0.1 TCP 51666 > http [ACK] Seq=0 Ack=0 Win=1024 Len=0 3 0.004644 10.10.0.81 10.11.0.1 ICMP Echo (ping) request 4 0.013672 10.11.0.1 10.10.0.81 ICMP Destination unreachable (Host unreachable) 5 0.014266 10.11.0.1 10.10.0.81 ICMP Destination unreachable (Host unreachable) 6 2.028412 10.10.0.81 10.11.0.1 ICMP Echo (ping) request 7 2.028776 10.11.0.1 10.10.0.81 ICMP Destination unreachable (Host unreachable) 8 2.029244 10.10.0.81 10.11.0.1 TCP 51667 > http [ACK] Seq=0 Ack=0 Win=4096 Len=0 9 2.029571 10.11.0.1 10.10.0.81 ICMP Destination unreachable (Host unreachable)
Test #2: (shows 10.11.0.1 up when it is not)
Nmap Command: c:\Temp\nmap>nmap -sP 10.11.0.2 10.11.0.1 Starting Nmap 4.85BETA9 ( http://nmap.org ) at 2009-06-04 11:19 Central Daylight Time Host 10.11.0.1 is up (0.00s latency). Nmap done: 2 IP addresses (1 host up) scanned in 1.74 seconds
Ethereal Output: No. Time Source Destination Protocol Info 10 11.277806 10.10.0.81 10.11.0.1 TCP 62969 > http [ACK] Seq=0 Ack=0 Win=3072 Len=0 11 11.278167 10.11.0.1 10.10.0.81 ICMP Destination unreachable (Host unreachable) 12 11.278961 10.10.0.81 10.11.0.2 TCP 62969 > http [ACK] Seq=0 Ack=0 Win=2048 Len=0 13 11.279236 10.10.0.81 10.11.0.2 ICMP Echo (ping) request
The order of the IP addresses makes a difference in the results.
10.11.0.1 always returns Destination unreachable and 10.11.0.2 always returns nothing.
In Test #2, nmap apparently misinterpreted the Destination unreachable as device up.
Stanley Bammel RGBI Network Administrator
Sent through the nmap-dev mailing list http://cgi.insecure.org/mailman/listinfo/nmap-dev Archived at http://SecLists.Org
Current thread:
- Apparent Bug in Nmap sbammel (Jun 04)
- Re: Apparent Bug in Nmap Fyodor (Jun 04)
* Re: Apparent Bug in Nmap Fyodor (Jun 04) - Re: Apparent Bug in Nmap David Fifield (Jun 04)
- Re: Apparent Bug in Nmap Fyodor (Jun 04)