Mailing List Archive

nessus creates core in HP-UX
Hello Experts,
I have installed Nessus on a HP-UX 11.23 IPF Machine.I am able to start the server Nessud,when I start running the client nessus
in commandline as,
./nessus -q x.x.x.x 1241 ses ses target_x_x_x_x result_alpha_ip
I debugged the core through GDB,but could not get any idea.I
have listed down all details,the output of GDB core and my log files.
Please help me.


Details:-
target_x_x_x_x file has only one input,ie
cat>target_x_x_x_x
x.x.x.x(ie,localhost)

here,x.x.x.x ------>my local host,on which I have installed Nessus.
core get formed at Plugin directory

# find . -name core
./lib/nessus/plugins/core

# ll ./lib/nessus/plugins/core
-rw------- 1 root sys 3285760 Jun 22 11:16 ./lib/nessus/plugins/core

# gdb nessusd core
HP gdb 4.2.01 for HP Itanium (32 or 64 bit) and target HP-UX 11.2x.
Copyright 1986 - 2001 Free Software Foundation, Inc.
Hewlett-Packard Wildebeest 4.2.01 (based on GDB) is covered by the
GNU General Public License. Type "show copying" to see the conditions to
change it and/or distribute copies. Type "show warranty" for warranty/support.
..
Core was generated by `nessusd'.
Program terminated with signal 6, Aborted.
#0 0x60000000c032b2f0:0 in kill+0x30 () from /usr/lib/hpux32/libc.so.1
(gdb) bt
#0 0x60000000c032b2f0:0 in kill+0x30 () from /usr/lib/hpux32/libc.so.1
#1 0x60000000c0222130:0 in raise+0x30 () from /usr/lib/hpux32/libc.so.1
#2 0x60000000c02e3c30:0 in abort+0x190 () from /usr/lib/hpux32/libc.so.1
#3 0x60000000c2f95c80:0 in alloc_tree_cell (lnb=15,
s=0x4026fa00 "script_version") at nasl_tree.c:51
#4 0x60000000c2f92380:0 in naslparse (parm=0x7fffdec0)
at nasl_grammar.tab.c:1218
#5 0x60000000c2fa1130:0 in execute_nasl_script (script_infos=0x40041e00,
name=0x400593f0 "/opt/iexpress/nessus/lib/nessus/plugins/gamespy_detect.nasl", mode=0) at exec.c:1708
#6 0x40a06f0:0 in nasl_thread (g_args=0x4026f820) at nasl_plugins.c:214
#7 0x4092650:0 in create_process (function=0x4088490 <.opd+0x40>,
argument=0x4026f820) at processes.c:108
#8 0x40a02f0:0 in nasl_plugin_launch (globals=0x401459f0, plugin=0x40041e00,
hostinfos=0x40236600, preferences=0x4002ed50, kb=0x4026df60,
name=0x400593f0 "/opt/iexpress/nessus/lib/nessus/plugins/gamespy_detect.nasl", soc=24) at nasl_plugins.c:126
#9 0x40af910:0 in plugin_launch (globals=0x401459f0, plugin=0x400f16a0,
hostinfos=0x40236600, preferences=0x4002ed50, key=0x4026df60,
name=0x400593f0 "/opt/iexpress/nessus/lib/nessus/plugins/gamespy_detect.nasl", launcher=0x4000faa0) at pluginlaunch.c:503
#10 0x408aba0:0 in launch_plugin (globals=0x401459f0, plugins=0x400f16a0,
hostname=0x7fffec18 "172.16.1.184", cur_plug=0x7fffe7b0, num_plugs=1722,
---Type <return> to continue, or q <return> to quit---
hostinfos=0x40236600, key=0x4026df60, new_kb=0) at attack.c:182
#11 0x408b470:0 in attack_host (globals=0x401459f0, hostinfos=0x40236600,
hostname=0x7fffec18 "172.16.1.184", sched=0x40030870) at attack.c:343
#12 0x408b870:0 in attack_start (args=0x4) at attack.c:524
#13 0x4092650:0 in create_process (function=0x4088460 <.opd+0x10>,
argument=0x7fffec00) at processes.c:108
#14 0x408c9f0:0 in attack_network (globals=0x401459f0) at attack.c:556
#15 0x40a3920:0 in server_thread (globals=0x401459f0) at nessusd.c:527
#16 0x4092650:0 in create_process (function=0x40884d0 <.opd+0x80>,
argument=0x401459f0) at processes.c:108
#17 0x40a4140:0 in main_loop () at nessusd.c:861
#18 0x40a61b0:0 in main (argc=2, argv=0x7ffff968, envp=0x7ffff5d0)
at nessusd.c:1324
# what core
core:
$OpenSSL A.00.09.07-d.003 $
$OpenSSL A.00.09.07-d.003 $
hosts_ctl.c 1.4 94/12/28 17:42:27
update.c 1.1 94/12/28 17:42:56
diag.c 1.1 94/12/28 17:42:20
myvsyslog.c 1.1 94/12/28 17:42:33
hosts_access.c 1.21 97/02/12 02:13:22
shell_cmd.c 1.5 94/12/28 17:42:44
eval.c 1.3 95/01/30 19:51:45
percent_x.c 1.4 94/12/28 17:42:37
workarounds.c 1.6 96/03/19 16:22:25
misc.c 1.2 96/02/11 17:01:29
percent_m.c 1.1 94/12/28 17:42:37
rfc931.c 1.10 95/01/02 16:11:34
$ B.11.23 Aug 29 2003 21:00:13 $
$ B11.23_LR Aug 29 2003 20:48:35 $
92453-07 linker dld HP Itanium(R) B.12.20 PBO 030501
92453-07 linker uld HP Itanium(R) B.12.20 PBO 030501
# file core
core: ELF-32 core file - IA64 from 'nessusd' - received SIGABRT
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
I checked the Log files,nothing Strange there,but scans goes well.And stopped the client Nessus manually by giving "Ctrl-C".
# tail -f nessusd.messages
[Tue Jun 22 11:34:28 2004][3246] connection from x.x.x.x
[Tue Jun 22 11:34:28 2004][4781] Client requested protocol version 12.
[Tue Jun 22 11:34:28 2004][4781] successful login of ses from x.x.x.x
[Tue Jun 22 11:34:33 2004][4781] Redirecting debugging output to /opt/iexpress/nessus/var/nessus/logs/nessusd.dump
[Tue Jun 22 11:34:34 2004][4781] user ses starts a new scan. Target(s) : x.x.x.x, with max_hosts = 30 and max_checks = 10
[Tue Jun 22 11:34:34 2004][4781] user ses : testing x.x.x.x (x.x.x.x) [4783]
[Tue Jun 22 11:34:34 2004][4783] user ses : launching nmap_tcp_connect.nes against x.x.x.x [4784]
[Tue Jun 22 11:34:36 2004][4783] nmap_tcp_connect.nes (process 4784) finished its job in 2.344 seconds
[Tue Jun 22 11:34:36 2004][4783] user ses : launching dont_scan_printers.nasl against x.x.x.x [4801]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching smb_scope.nasl against x.x.x.x [4802]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching logins.nasl against x.x.x.x [4803]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching cgibin_in_kb.nasl against x.x.x.x [4804]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching libwhisker_settings.nasl against x.x.x.x [4805]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching smtp_settings.nasl against x.x.x.x [4806]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching http_ids_evasion.nasl against x.x.x.x [4807]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching ids_evasion.nasl against x.x.x.x [4808]
[Tue Jun 22 11:34:36 2004][4783] user ses : launching find_service.nes against x.x.x.x [4809]
[Tue Jun 22 11:34:37 2004][4783] user ses : launching gamespy_detect.nasl against x.x.x.x [4810]
[Tue Jun 22 11:34:37 2004][4783] dont_scan_printers.nasl (process 4801) finished its job in 0.200 seconds
[Tue Jun 22 11:34:37 2004][4783] smb_scope.nasl (process 4802) finished its job in 0.180 seconds
[Tue Jun 22 11:34:37 2004][4783] user ses : launching snmp_default_communities.nasl against x.x.x.x [4813]
[Tue Jun 22 11:34:37 2004][4783] user ses : launching sheerdns_traversal.nasl against x.x.x.x [4817]
[Tue Jun 22 11:34:37 2004][4783] logins.nasl (process 4803) finished its job in 0.560 seconds
[Tue Jun 22 11:34:37 2004][4783] user ses : launching rpc_portmap.nasl against x.x.x.x [4839]
[Tue Jun 22 11:34:37 2004][4783] cgibin_in_kb.nasl (process 4804) finished its job in 0.873 seconds
[Tue Jun 22 11:34:37 2004][4783] user ses : launching shaft.nasl against x.x.x.x [4840]
[Tue Jun 22 11:34:38 2004][4783] http_ids_evasion.nasl (process 4807) finished its job in 1.179 seconds
[Tue Jun 22 11:34:38 2004][4783] user ses : launching os_fingerprint.nasl against x.x.x.x [4841]
[Tue Jun 22 11:34:38 2004][4783] ids_evasion.nasl (process 4808) finished its job in 1.492 seconds
[Tue Jun 22 11:34:38 2004][4783] user ses : launching trinoo.nasl against x.x.x.x [4842]
[Tue Jun 22 11:34:38 2004][4783] smtp_settings.nasl (process 4806) finished its job in 1.979 seconds
[Tue Jun 22 11:34:38 2004][4783] user ses : launching afs_version.nasl against x.x.x.x [4843]
[Tue Jun 22 11:34:39 2004][4783] os_fingerprint.nasl (process 4841) finished its job in 1.138 seconds
[Tue Jun 22 11:34:39 2004][4783] user ses : launching writesrv.nasl against x.x.x.x [4845]
[Tue Jun 22 11:34:39 2004][4781] Stopping the whole test (requested by client)
[Tue Jun 22 11:34:39 2004][4781] Client abruptly closed the communication
[Tue Jun 22 11:34:39 2004][4781] user ses : test complete

# tail -f nessusd.dump
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
[4801] Could not allocate a pointer of size 16 !
malloc: Not enough space
[4802] Could not allocate a pointer of size 13 !
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
mmap: Not enough space
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
malloc: Not enough space
mmap: Not enough space
malloc: Not enough space
---------------------------------------------------------------------------------------------------------

Yahoo! India Matrimony: Find your partner online.