ZAP Active Scan - Exception
47 views
Skip to first unread message
NCoder
Nov 13, 2016, 11:00:24 PM11/13/16
to OWASP ZAP User Group
Hello,
Sorry off late i have been asking in a lot of queries. When running Active Scan through the API sometimes the scan gets stuck. Most of the time i was thinking it was a kind of a memory issue and used to close ZAP and restart. I just tried to check the logs when it happened recently, this is the exception i get. I am not sure if its because of any of the add-ons, If this is anything that someone is aware and if im doing anything wrong with the settings please let me know. Im using ZAP 2.5.0 and triggering active scan through JAVA APIs.
org.jfree.data.general.SeriesException: You are attempting to add an observation for the time period Sun Nov 13 19:10:44 PST 2016 but the series already contains an observation for that time period. Duplicates are not permitted. Try using the addOrUpdate() method.
at org.jfree.data.time.TimeSeries.add(TimeSeries.java:519)
at org.jfree.data.time.TimeSeries.add(TimeSeries.java:562)
at org.jfree.data.time.TimeSeries.add(TimeSeries.java:548)
at org.zaproxy.zap.extension.ascan.ScanProgressDialog.showProgress(Unknown Source)
at org.zaproxy.zap.extension.ascan.ScanProgressDialog.access$500(Unknown Source)
at org.zaproxy.zap.extension.ascan.ScanProgressDialog$4$1.run(Unknown Source)
at java.awt.event.InvocationEvent.dispatch(InvocationEvent.java:311)
at java.awt.EventQueue.dispatchEventImpl(EventQueue.java:756)
at java.awt.EventQueue.access$500(EventQueue.java:97)
at java.awt.EventQueue$3.run(EventQueue.java:709)
at java.awt.EventQueue$3.run(EventQueue.java:703)
at java.security.AccessController.doPrivileged(Native Method)
at java.security.ProtectionDomain$JavaSecurityAccessImpl.doIntersectionPrivilege(ProtectionDomain.java:76)
at java.awt.EventQueue.dispatchEvent(EventQueue.java:726)
at java.awt.EventDispatchThread.pumpOneEventForFilters(EventDispatchThread.java:201)
at java.awt.EventDispatchThread.pumpEventsForFilter(EventDispatchThread.java:116)
at java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:105)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:101)
at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:93)
at java.awt.EventDispatchThread.run(EventDispatchThread.java:82)
thc...@gmail.com
Nov 14, 2016, 4:08:28 AM11/14/16
to zaprox...@googlegroups.com
Hi.
That's a bug:
https://github.com/zaproxy/zaproxy/issues/2550
(It's fixed in the weekly releases
https://github.com/zaproxy/zaproxy/wiki/Downloads#zap-weekly)
Best regards.
That's a bug:
https://github.com/zaproxy/zaproxy/issues/2550
(It's fixed in the weekly releases
https://github.com/zaproxy/zaproxy/wiki/Downloads#zap-weekly)
Best regards.
NCoder
Jan 24, 2017, 8:19:15 PM1/24/17
to OWASP ZAP User Group
Found the root cause of the issue, i have updated the issues as well:
Base 64 Disclosure does not stop detecting its instances and the count keeps increasing. So when i try to generate the report its failing. This could be possible for all passive scan vulnerabilities that could keep findings issues and does not stop. I disabled Base 64 Disclosure in Options --> Passive Scan Rules and then i was able to generate the report.
Reply all
Reply to author
Forward
0 new messages