Actions
Bug #5786
closed
VJ
PA
smb: possible evasion with trailing nbss data
Bug #5786:
smb: possible evasion with trailing nbss data
Affected Versions:
Effort:
Difficulty:
Label:
Description
If nbss trailing data would be part of a larger read or write record, the streaming mode will likely get confused by the trailing data.
PA Updated by Philippe Antoine over 3 years ago
- Status changed from Assigned to In Review
- Target version changed from TBD to 7.0.0-rc1
PA Updated by Philippe Antoine over 3 years ago
- Related to Bug #5770: smb: no consistency check between NBSS length and length field for some SMB operations added
PA Updated by Philippe Antoine about 3 years ago
- Target version changed from 7.0.0-rc1 to 7.0.0-rc2
PA Updated by Philippe Antoine about 3 years ago
- Status changed from In Review to Closed
Fixed by https://github.com/OISF/suricata/pull/8514
Would we want backports for this ?
VJ Updated by Victor Julien about 3 years ago
- Label Needs backport to 6.0 added
Yeah I think that would be good.
PA Updated by Philippe Antoine about 3 years ago
- Status changed from Closed to Resolved
PA Updated by Philippe Antoine about 3 years ago
- Subtask #5898 added
PA Updated by Philippe Antoine about 3 years ago
OT Updated by OISF Ticketbot about 3 years ago
- Subtask #5904 added
OT Updated by OISF Ticketbot about 3 years ago
- Label deleted (
Needs backport to 6.0)
VJ Updated by Victor Julien about 3 years ago
- Status changed from Resolved to Closed
VJ Updated by Victor Julien about 3 years ago
- Private changed from Yes to No
Actions