We're now a non-profit! Support open source packet analysis by making a donation.

Wireshark-bugs: [Wireshark-bugs] [Bug 7351] New: packet-smb.c does not properly handle NT TRANSA

Date: Sun, 10 Jun 2012 07:02:45 -0700 (PDT)

           Summary: packet-smb.c does not properly handle NT TRANSACT
                    requests (and probably TRANSACT and TRANSACT2
           Product: Wireshark
           Version: 1.9.x (Experimental)
          Platform: x86
        OS/Version: All
            Status: NEW
          Severity: Major
          Priority: Low
         Component: Wireshark
        AssignedTo: [email protected]
        ReportedBy: [email protected]

Build Information:
Apply the attached patch and rebuild as normal.
When working on bug 8989 in Samba
(https://bugzilla.samba.org/show_bug.cgi?id=8989) I noticed that Wireshark does
not re-assemble the multpiple SMB messages associated with SET SECURITY SD when
the SD is larger than about 16kiB.

Attached is a patch that fixes the NT TRANSACT code to do that. It should
probably be extended to properly handle TRANSACT and TRANSACT2 requests and
responses as well.

There is still an outstanding issue in that the secondaries are shown as
UNKNOWNs and should probably be shown as related to the first request/response
in the sequence.

Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.