Wireshark · Wireshark-bugs: [Wireshark-bugs] [Bug 3626] New: DNP 3.0 dissector can re-assemble application layer fragments from

Wireshark-bugs: [Wireshark-bugs] [Bug 3626] New: DNP 3.0 dissector can re-assemble application l

Date: Sat, 27 Jun 2009 23:21:49 -0700 (PDT)

https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3626

           Summary: DNP 3.0 dissector can re-assemble application layer
                    fragments from different RTUs
           Product: Wireshark
           Version: 1.2.0
          Platform: x86
        OS/Version: Windows XP
            Status: NEW
          Severity: Major
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: kelvin.proctor@xxxxxxxxxxxxxxxxxxxxxxxxx


Build Information:
Version 1.2.0 (SVN Rev 28753)

Copyright 1998-2009 Gerald Combs <gerald@xxxxxxxxxxxxx> and contributors.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

Compiled with GTK+ 2.16.2, with GLib 2.20.3, with WinPcap (version unknown),
with libz 1.2.3, without POSIX capabilities, with libpcre 7.0, with SMI 0.4.8,
with c-ares 1.6.0, with Lua 5.1, with GnuTLS 2.8.1, with Gcrypt 1.4.4, with MIT
Kerberos, with GeoIP, with PortAudio V19-devel (built Jun 15 2009), with
AirPcap.

Running on Windows XP Service Pack 3, build 2600, with WinPcap version 4.1
beta5
(packet.dll version 4.1.0.1452), based on libpcap version 1.0.0, GnuTLS 2.8.1,
Gcrypt 1.4.4, without AirPcap.

Built using Microsoft Visual C++ 9.0 build 30729

Wireshark is Open Source Software released under the GNU General Public
License.

Check the man page and http://www.wireshark.org for more information.
--
The DNP 3.0 protocol is a serial protocol that can also operate over TCP or
UDP.  It is common for DNP 3.0 to be used in a multi-drop serial environment
where a single TCP or UDP traffic stream may contain traffic from multiple RTUs
(remote terminal units).

The DNP 3.0 dissector will currently attempt to re-assemble fragmented packets
from within a TCP or UDP conversation using the standard find_conversation
APIs.

When identifying a conversation the dissector should also take into account the
DNP 3.0 source and destination addresses.


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

Follow-Ups:
- [Wireshark-bugs] [Bug 3626] DNP 3.0 dissector can re-assemble application layer fragments from different RTUs
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 3626] DNP 3.0 dissector can re-assemble application layer fragments from different RTUs
  - From: bugzilla-daemon
- [Wireshark-bugs] [Bug 3626] DNP 3.0 dissector can re-assemble application layer fragments from different RTUs
  - From: bugzilla-daemon

Prev by Date: [Wireshark-bugs] [Bug 3560] USB Packets in pcap-ng Files Not Dissected Properly
Next by Date: [Wireshark-bugs] [Bug 3626] DNP 3.0 dissector can re-assemble application layer fragments from different RTUs
Previous by thread: [Wireshark-bugs] [Bug 3625] Buildbot crash output: fuzz-2009-06-27-21110.pcap
Next by thread: [Wireshark-bugs] [Bug 3626] DNP 3.0 dissector can re-assemble application layer fragments from different RTUs
Index(es):
- Date
- Thread