Actions
Bug #5786
closedsmb: possible evasion with trailing nbss data
Affected Versions:
Effort:
Difficulty:
Label:
Description
If nbss trailing data would be part of a larger read or write record, the streaming mode will likely get confused by the trailing data.
Updated by Philippe Antoine almost 2 years ago
- Status changed from Assigned to In Review
- Target version changed from TBD to 7.0.0-rc1
Updated by Philippe Antoine almost 2 years ago
- Related to Bug #5770: smb: no consistency check between NBSS length and length field for some SMB operations added
Updated by Philippe Antoine almost 2 years ago
- Target version changed from 7.0.0-rc1 to 7.0.0-rc2
Updated by Philippe Antoine over 1 year ago
- Status changed from In Review to Closed
Fixed by https://github.com/OISF/suricata/pull/8514
Would we want backports for this ?
Updated by Victor Julien over 1 year ago
- Label Needs backport to 6.0 added
Yeah I think that would be good.
Updated by Philippe Antoine over 1 year ago
- Status changed from Closed to Resolved
Updated by Philippe Antoine over 1 year ago
Updated by OISF Ticketbot over 1 year ago
- Label deleted (
Needs backport to 6.0)
Updated by Victor Julien over 1 year ago
- Status changed from Resolved to Closed
Actions