Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 2952] SMB2 write responses improperly dissected

Wireshark-bugs: [Wireshark-bugs] [Bug 2952] SMB2 write responses improperly dissected

Date: Sat, 7 Mar 2009 20:50:48 -0800 (PST)

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2952





--- Comment #3 from yami <yamisoe@xxxxxxxxx>  2009-03-07 20:50:41 PDT ---
Created an attachment (id=2828)
 --> (https://bugs.wireshark.org/bugzilla/attachment.cgi?id=2828)
confirm the patch

Please check packet 52 (which is a write response).

I think the patch is a right QUICK fix. However, since we can get SMB2 protocol
specification from MicroSoft MSDN, these 8 unknown bytes are known, and should
be:

    Remaining (4 bytes) + WriteChannelInfoOffset (2 bytes) +
WriteChannelInfoLength(2 bytes)

In fact, I think current SMB2 dissector need an overhaul.


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Prev by Date: [Wireshark-bugs] [Bug 3301] Add SCCP "default" sub-dissector
Next by Date: [Wireshark-bugs] [Bug 3313] BACnet MS/TP checksums
Previous by thread: [Wireshark-bugs] [Bug 3313] BACnet MS/TP checksums
Next by thread: [Wireshark-bugs] [Bug 3222] Interface details error
Index(es):
- Date
- Thread