RE: NAT.EXE Exceptions

From: Reava, Jeffrey [IT/0200] (jeffrey.reava@pharmacia.com)
Date: Thu Sep 11 2003 - 10:41:50 EDT


Ian:

Sounds like DLL hell. What version of cygwin.dll are you using? I had a
similar problem once with a different cygwin-dependent tool and found that I
needed an updated version of cygwin1.dll for that specific utility. I put
the problem child in a separate folder with the updated dll, and now
everybody is happy.

HTH,

Jeff

-----Original Message-----
From: Michael Thumann [mailto:mlthumann@ids-guide.de]
Sent: Thursday, September 11, 2003 4:40 AM
To: Ian Lyte; pen-test@securityfocus.com
Subject: Re: NAT.EXE Exceptions

You can try enum from http://razor.bindview.com or smbgrind which is part
of the cybercop scanner. Both are commandline based tools and smbgrind
supports multiple threads, so it's quite fast.

cheers
Michael

At 15:42 10.09.2003 +0100, Ian Lyte wrote:
>I'm running a dictionary attack against a NETBIOS share (admin$) and
>historically I have always used NAT.EXE for this as it has always performed
>admirably.
>
>However now it has started giving me this :
>
>[*]--- Unable to access
>(nat.exe 1000) In cygwin_except_handler
>(nat.exe 1000) Exception trapped!
>(nat.exe 1000) exception C0000005 at 40F7EB
>(nat.exe 1000) exception: ax 80000000 bx 7FFFFFF cx 1F dx 1
>(nat.exe 1000) exception: si F di 14 bp 245EE58 sp 245EE18
>(nat.exe 1000) exception is: STATUS_ACCESS_VIOLATION
>(nat.exe 1000) Stack trace:
>(nat.exe 1000) frame 0: sp = 0x245EA2C, pc = 0x1001282A
>(nat.exe 1000) frame 1: sp = 0x245EA48, pc = 0x77FB172E
>(nat.exe 1000) frame 2: sp = 0x245EA6C, pc = 0x77FB1700
>(nat.exe 1000) frame 3: sp = 0x245EB18, pc = 0x77F75DBA
>(nat.exe 1000) frame 4: sp = 0x245EE58, pc = 0x410351
>(nat.exe 1000) frame 5: sp = 0x245EE8C, pc = 0x410492
>(nat.exe 1000) frame 6: sp = 0x245EEA8, pc = 0x407EFA
>(nat.exe 1000) frame 7: sp = 0x245F350, pc = 0x40A619
>(nat.exe 1000) frame 8: sp = 0x245F3FC, pc = 0x40A9CE
>(nat.exe 1000) frame 9: sp = 0x245F414, pc = 0x401681
>(nat.exe 1000) frame 10: sp = 0x245F43C, pc = 0x4013C1
>(nat.exe 1000) frame 11: sp = 0x245F45C, pc = 0x10011BEB
>(nat.exe 1000) frame 12: sp = 0x245FF9C, pc = 0x10011BFF
>(nat.exe 1000) frame 13: sp = 0x245FFA8, pc = 0x417614
>(nat.exe 1000) frame 14: sp = 0x245FFB8, pc = 0x401012
>(nat.exe 1000) frame 15: sp = 0x245FFC0, pc = 0x77E814C7
>(nat.exe 1000) End of stack trace (more stack frames may be present)
>
>Anyone know why or experiencing the same thing? Have you got a workaround?
>
>Also - any suggestions for a newer/better/faster version for use under
>Win32?
>
>Thanks in advance ...
>
>Ian
>
>PS Running on XP Pro, all patches. But it does it on my Win98 box too :(
>
>---------------------------------------------------------------------------
>FREE Trial!
>New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
>and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
>technology powered by the award-winning FoundScan engine. Try it free
>for 21 days at:
>http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
>---------------------------------------------------------------------------
-

----------------------------------------------------------------------------
------------------------
Michael Thumann mlthumann@ids-guide www.ids-guide.de
Public Key available at http://www.ids-guide.de/MichaelThumann.asc
----------------------------------------------------------------------------
------------------------
PGP Fingerprint:
8633 D9E3 E90E F18E A70A 6321 A8CF 6A87 EC79 7B59
----------------------------------------------------------------------------
------------------------
The only secure computer is one that's unplugged, locked in a safe,
and buried 20 feet under the ground in a secret location...and i'm not
even too sure about that one
                                                                    --Dennis

Huges, FBI.

---------------------------------------------------------------------------
FREE Trial!
New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
technology powered by the award-winning FoundScan engine. Try it free for
21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
----------------------------------------------------------------------------

This communication is intended solely for the use of the addressee and may
contain information that is legally privileged, confidential or exempt from
disclosure. If you are not the intended recipient, please note that any
dissemination, distribution, or copying of this communication is strictly
prohibited. Anyone who receives this message in error should notify the
sender immediately and delete it from his or her computer.

---------------------------------------------------------------------------
FREE Trial!
New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL
and PROFESSIONAL TL software. Fast, reliable vulnerability assessment
technology powered by the award-winning FoundScan engine. Try it free for 21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
----------------------------------------------------------------------------



This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:39 EDT