Wireshark · Ethereal-dev: [Ethereal-dev] bug in socks (3) - wrong dissection of AuthReply packets.

Ethereal-dev: [Ethereal-dev] bug in socks (3) - wrong dissection of AuthReply packets.

Note: This archive is from the project's previous web site, ethereal.com. This list is no longer active.

From: Yaniv Kaul <ykaul@xxxxxxxxxxxx>

Date: Thu, 12 Feb 2004 13:08:20 +0200

Lines 840-844, in packet-socks.c:
   else if ( hash_info->state == AuthReply){    /* V5 User Auth reply */
       hash_info->cmd_reply_row = get_packet_ptr;
       if (check_col(pinfo->cinfo, COL_INFO))

col_append_str(pinfo->cinfo, COL_INFO, " Userauthentication reply");

       hash_info->state = V5Command;

The code assumes that the response for a an authentication request is aV5Command. However, it's usually an authentication response - and theauthentication subnegotiation has its own version number ('1', accordingto RFC 1929). This causes it not to interpret the command properly (asit see the version is '1' and '5', it won't continue to dissect the packet).

I've seen servers replying with version '5', but I think it's a faultyserver - some clients won't be able to connect to it, if they expect theversion they sent ('1)' and the version they received ('5') to match...


Snoops will be available upon request.

Follow-Ups:
- [Ethereal-dev] Re: bug in socks (3) - wrong dissection of AuthReply packets.
  - From: Yaniv Kaul

Prev by Date: Re: [Ethereal-dev] merging nsis installer for GTK1 and GTK2
Next by Date: RE: [Ethereal-dev] merging nsis installer for GTK1 and GTK2
Previous by thread: [Ethereal-dev] RFC: Bitfield operators in display filters
Next by thread: [Ethereal-dev] Re: bug in socks (3) - wrong dissection of AuthReply packets.
Index(es):
- Date
- Thread