https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2833
Summary: Microsoft-specific OIDs not recognized by BER dissector.
Product: Wireshark
Version: 1.0.0
Platform: PC
URL: https://www.paypal.com
OS/Version: All
Status: NEW
Severity: Enhancement
Priority: Low
Component: Wireshark
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: adam.buchbinder@xxxxxxxxx
Build Information:
--
Capture a session that involves an SSL handshake with https://www.paypal.com.
In the certificate that PayPal sends, the following OIDs are not implemented:
1.3.6.1.4.1.311.60.2.1.3 (iso.3.6.1.4.1.311.60.2.1.3) (set to "US")
1.3.6.1.4.1.311.60.2.1.2 (iso.3.6.1.4.1.311.60.2.1.2) (set to "Delaware")
These appear to belong to Microsoft (1.3.6.1.4.1.311), but they're not
described in the major OID catalogs.
I had thought that these were just copies of the S, L and C fields (the cert
described at
http://www.ubs.com/1/e/ebanking/internet/internet_security/requirements.html
has the .1 field as well), but PayPal's C=US and L=San Jose.
There's another certificate with the .3 field at https://banking.postbank.de/;
and another with the .1 field as well at https://www.dresdner-privat.de/.
--
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
