View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0002160Kali LinuxKali Package Bugpublic2015-03-11 10:022022-01-12 10:47
Reporterdookie Assigned Tosbrun  
PrioritynormalSeverityminorReproducibilityalways
Status resolvedResolutionfixed 
Product Versionkali-dev 
Fixed in Versionkali-dev 
Summary0002160: SQLmap Errors out on kali-rolling
Description

Running sqlmap against a target URL causes the following failure:

root@kali:~# sqlmap -u "http://192.168.11.251/wp/" --dbs
Traceback (most recent call last):
File "./sqlmap", line 22, in <module>
from lib.controller.controller import start
File "/usr/share/sqlmap/lib/controller/controller.py", line 61, in <module>
from lib.core.target import initTargetEnv
File "/usr/share/sqlmap/lib/core/target.py", line 40, in <module>
from lib.core.option import _setDBMS
File "/usr/share/sqlmap/lib/core/option.py", line 140, in <module>
from lib.request.httpshandler import HTTPSHandler
File "/usr/share/sqlmap/lib/request/httpshandler.py", line 22, in <module>
_protocols = [ssl.PROTOCOL_SSLv3, ssl.PROTOCOL_TLSv1, ssl.PROTOCOL_SSLv23]
AttributeError: 'module' object has no attribute 'PROTOCOL_SSLv3'

Activities

rhertzog

rhertzog

2015-03-13 06:27

administrator   ~0003161

The underlying problem is that libssl no longer supports SSLv2 and SSLv3. In turn the Python "ssl" module built against that library no longer exports those ssl.PROTOCOL_SSLv3 ssl.PROTOCOL_SSLv23 constants.

So sqlmap should learn to deal with those missing constants.

And for Kali we might want to reenable SSLv2/SSLv3 in libssl and rebuild python.
rhertzog

rhertzog

2015-03-13 06:33

administrator   ~0003162

Filed https://github.com/sqlmapproject/sqlmap/issues/1193 in the upstream project.
rhertzog

rhertzog

2015-03-13 09:26

administrator   ~0003163

Looks like this is already fixed in the sqlmap git repository. Let's try to update sqlmap only for now.
sbrun

sbrun

2015-03-16 05:36

manager   ~0003167

sqlmap is updated in kali-proposed-updates and kali-dev. The new version is 1.0+git20150214-0kali1.

Issue History

Date Modified Username Field Change
2015-03-11 10:02 dookie New Issue
2015-03-13 06:27 rhertzog Note Added: 0003161
2015-03-13 06:27 rhertzog Assigned To => sbrun
2015-03-13 06:27 rhertzog Status new => confirmed
2015-03-13 06:33 rhertzog Note Added: 0003162
2015-03-13 09:26 rhertzog Note Added: 0003163
2015-03-16 05:36 sbrun Note Added: 0003167
2015-03-16 05:36 sbrun Status confirmed => resolved
2015-03-16 05:36 sbrun Resolution open => fixed
2015-03-16 05:36 sbrun Fixed in Version => kali-dev
2015-11-09 13:44 Mr.Joe Issue cloned: 0002807