Re: NAT.EXE Exceptions

From: morning_wood (se_cur_ity@hotmail.com)
Date: Tue Sep 16 2003 - 04:44:20 EDT

• Next message: Javier Fernandez-Sanguino: "Re: IRC bot?"
• Previous message: Nicolas Gregoire: "Re: IRC bot?"
• In reply to: Michael Thumann: "Re: NAT.EXE Exceptions"
• Next in thread: Reava, Jeffrey [IT/0200]: "RE: NAT.EXE Exceptions"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

as well nbtenum or my own WenumNBT.zip which can brute a single host or a
list.
WenumNBT.zip can be found at http://www.illmob.org/files/WenumNBT.zip

Donnie Werner
Chief Technical Officer
e2-labs Security Pvt Ltd
http://e2-labs.com

----- Original Message -----
From: "Michael Thumann" <mlthumann@ids-guide.de>
To: "Ian Lyte" <ianlyte@hotmail.com>; <pen-test@securityfocus.com>
Sent: Thursday, September 11, 2003 2:09 PM
Subject: Re: NAT.EXE Exceptions

> You can try enum from http://razor.bindview.com or smbgrind which is part
> of the cybercop scanner. Both are commandline based tools and smbgrind
> supports multiple threads, so it's quite fast.
>
> cheers
> Michael
>
> At 15:42 10.09.2003 +0100, Ian Lyte wrote:
> >I'm running a dictionary attack against a NETBIOS share (admin$) and
> >historically I have always used NAT.EXE for this as it has always
performed
> >admirably.
> >
> >However now it has started giving me this :
> >
> >[*]--- Unable to access
> >(nat.exe 1000) In cygwin_except_handler
> >(nat.exe 1000) Exception trapped!
> >(nat.exe 1000) exception C0000005 at 40F7EB
> >(nat.exe 1000) exception: ax 80000000 bx 7FFFFFF cx 1F dx 1
> >(nat.exe 1000) exception: si F di 14 bp 245EE58 sp 245EE18
> >(nat.exe 1000) exception is: STATUS_ACCESS_VIOLATION
> >(nat.exe 1000) Stack trace:
> >(nat.exe 1000) frame 0: sp = 0x245EA2C, pc = 0x1001282A
> >(nat.exe 1000) frame 1: sp = 0x245EA48, pc = 0x77FB172E
> >(nat.exe 1000) frame 2: sp = 0x245EA6C, pc = 0x77FB1700
> >(nat.exe 1000) frame 3: sp = 0x245EB18, pc = 0x77F75DBA
> >(nat.exe 1000) frame 4: sp = 0x245EE58, pc = 0x410351
> >(nat.exe 1000) frame 5: sp = 0x245EE8C, pc = 0x410492
> >(nat.exe 1000) frame 6: sp = 0x245EEA8, pc = 0x407EFA
> >(nat.exe 1000) frame 7: sp = 0x245F350, pc = 0x40A619
> >(nat.exe 1000) frame 8: sp = 0x245F3FC, pc = 0x40A9CE
> >(nat.exe 1000) frame 9: sp = 0x245F414, pc = 0x401681
> >(nat.exe 1000) frame 10: sp = 0x245F43C, pc = 0x4013C1
> >(nat.exe 1000) frame 11: sp = 0x245F45C, pc = 0x10011BEB
> >(nat.exe 1000) frame 12: sp = 0x245FF9C, pc = 0x10011BFF
> >(nat.exe 1000) frame 13: sp = 0x245FFA8, pc = 0x417614
> >(nat.exe 1000) frame 14: sp = 0x245FFB8, pc = 0x401012
> >(nat.exe 1000) frame 15: sp = 0x245FFC0, pc = 0x77E814C7
> >(nat.exe 1000) End of stack trace (more stack frames may be present)
> >
> >Anyone know why or experiencing the same thing? Have you got a
workaround?
> >
> >Also - any suggestions for a newer/better/faster version for use under
> >Win32?
> >
> >Thanks in advance ...
> >
> >Ian
> >
> >PS Running on XP Pro, all patches. But it does it on my Win98 box too :(
> >
>
>---------------------------------------------------------------------------
> >FREE Trial!
> >New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
> >and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
> >technology powered by the award-winning FoundScan engine. Try it free
> >for 21 days at:
> >http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
>
>---------------------------------------------------------------------------
-
>
> --------------------------------------------------------------------------
--------------------------
> Michael Thumann mlthumann@ids-guide www.ids-guide.de
> Public Key available at http://www.ids-guide.de/MichaelThumann.asc
> --------------------------------------------------------------------------
--------------------------
> PGP Fingerprint:
> 8633 D9E3 E90E F18E A70A 6321 A8CF 6A87 EC79 7B59
> --------------------------------------------------------------------------
--------------------------
> The only secure computer is one that's unplugged, locked in a safe,
> and buried 20 feet under the ground in a secret location...and i'm not
> even too sure about that one
> --Denn
is
> Huges, FBI.
>
>
> --------------------------------------------------------------------------
-
> FREE Trial!
> New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
> and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
> technology powered by the award-winning FoundScan engine. Try it free for
21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
> --------------------------------------------------------------------------

--
>
>
---------------------------------------------------------------------------
FREE Trial!
New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL 
and PROFESSIONAL TL software. Fast, reliable vulnerability assessment 
technology powered by the award-winning FoundScan engine. Try it free for  21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
----------------------------------------------------------------------------

• Next message: Javier Fernandez-Sanguino: "Re: IRC bot?"
• Previous message: Nicolas Gregoire: "Re: IRC bot?"
• In reply to: Michael Thumann: "Re: NAT.EXE Exceptions"
• Next in thread: Reava, Jeffrey [IT/0200]: "RE: NAT.EXE Exceptions"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:40 EDT