]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c9dbc56) | patch
smb/ntlmssp: improve version check 11450/head
authorVictor Julien <vjulien@oisf.net>
Tue, 25 Jun 2024 08:35:35 +0000 (10:35 +0200)
committerVictor Julien <vjulien@oisf.net>
Tue, 9 Jul 2024 08:22:29 +0000 (10:22 +0200)
commitff8d9ca1a1f01e56c52b016c0ac4cafb11b22780
tree73284e971337586504e47d818142eac902dd807ctree
parentc9dbc565d96c121ec8356de42624aae7998dca9fcommit | diff
smb/ntlmssp: improve version check

Don't assume the ntlmssp version field is always present if the flag is
set. Instead keep track of the offsets of the data of the various blobs
and see if there is space for the version.

Inspired by how Wireshark does the parsing.

Bug: #7121.
(cherry picked from commit f59c43b1c7b8eada987d642cbc1645abefb3984c)
rust/src/smb/ntlmssp_records.rs diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git