Project

General

Profile

Actions
Copy link

Bug #79

closed
KK KK

DCERPC over SMB via WriteAndX

Bug #79: DCERPC over SMB via WriteAndX

Added by Kirby Kuehl about 16 years ago. Updated about 16 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Kirby Kuehl
Target version:
-
Affected Versions:
Effort:
Difficulty:
Label:

Description

- Don't alter original wordcount and bytecount values, we use them later.
- Make printUUID not crash if uuid is NULL
- Make SMB WriteAndX parsing work for dcerpc over smb calls.
- Remove APP_LAYER_PARSER_DONE so the smb engine can parse more than one packet per stream.
- Fix DataLength/DataLengthHigh calculation.

Files

Download all files
0001-smb-writeandx-dcerpc-over-smb.patch (23.9 KB) 0001-smb-writeandx-dcerpc-over-smb.patch Kirby Kuehl, 02/06/2010 10:03 AM
0002-reset-smb-bytesprocessed-when-complete.patch (936 Bytes) 0002-reset-smb-bytesprocessed-when-complete.patch Kirby Kuehl, 02/06/2010 10:17 AM
0003-fix-padding-bug.patch (11.5 KB) 0003-fix-padding-bug.patch Kirby Kuehl, 02/07/2010 12:28 PM
0004-fix-warning.patch (886 Bytes) 0004-fix-warning.patch This ends up being a no op, but I included it since it is incremental. Kirby Kuehl, 02/08/2010 09:33 AM
0005-signed-unsigned-comparision-cleanup.patch (2.69 KB) 0005-signed-unsigned-comparision-cleanup.patch Kirby Kuehl, 02/08/2010 09:33 AM
Actions
Copy link

Also available in: PDF Atom