Wireshark-bugs: [Wireshark-bugs] [Bug 5372] Wireshark crash when loading capture (SVN only? Linu
Date: Thu, 4 Nov 2010 05:49:41 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5372 --- Comment #1 from Yaniv Kaul <mykaul@xxxxxxxxx> 2010-11-04 05:49:38 PDT --- I managed to reduce the problem to a single packet - cldap packet. tshark seems to print it without crashing (changed the hostnames, but their length is still accurate): LDAPMessage searchRequest(3) "<ROOT>" baseObject messageID: 3 protocolOp: searchRequest (3) searchRequest baseObject: scope: baseObject (0) derefAliases: neverDerefAliases (0) sizeLimit: 0 timeLimit: 0 typesOnly: False Filter: (&(&(&(&(&(&(DnsDomain=abc.defghijklm.qa.lab.xyz.ababab.com.)(Host=WIN-6Q029HUHE95))(User=WIN-6Q029HUHE95$))(AAC=80:00:00:00))(DomainSid=S-1-5-21-3515066736-2056041866-797721844))(DomainGuid=eb17e3e2-2d73-4e3a-8f05-2d7aef4e2492))(N filter: and (0) and: (&(&(&(&(&(&(DnsDomain=abc.defghijklm.qa.lab.xyz.ababab.com.)(Host=WIN-6Q029HUHE95))(User=WIN-6Q029HUHE95$))(AAC=80:00:00:00))(DomainSid=S-1-5-21-3515066736-2056041866-797721844))(DomainGuid=eb17e3e2-2d73-4e3a-8f05-2d7aef4e2492))(NtVe and: 7 items Filter: (DnsDomain=dc2.forest2008.qa.lab.tlv.redhat.com.) and item: equalityMatch (3) equalityMatch attributeDesc: DnsDomain assertionValue: abc.defghijklm.qa.lab.xyz.ababab.com. Filter: (Host=WIN-6Q029HUHE95) and item: equalityMatch (3) equalityMatch attributeDesc: Host assertionValue: WIN-6Q029HUHE95 Filter: (User=WIN-6Q029HUHE95$) and item: equalityMatch (3) equalityMatch attributeDesc: User assertionValue: WIN-6Q029HUHE95$ Filter: (AAC=80:00:00:00) and item: equalityMatch (3) equalityMatch attributeDesc: AAC assertionValue: 80:00:00:00 Filter: (DomainSid=S-1-5-21-3515066736-2056041866-797721844) and item: equalityMatch (3) equalityMatch attributeDesc: DomainSid SID: S-1-5-21-3515066736-2056041866-797721844 Revision: 1 Num Auth: 4 Authority: 5 Subauthorities: 21-3515066736-2056041866-797721844 Filter: (DomainGuid=eb17e3e2-2d73-4e3a-8f05-2d7aef4e2492) and item: equalityMatch (3) equalityMatch attributeDesc: DomainGuid GUID: eb17e3e2-2d73-4e3a-8f05-2d7aef4e2492 Filter: (NtVer=0x00000016) and item: equalityMatch (3) equalityMatch attributeDesc: NtVer Search Flags: 0x00000016 (V5, V5EX, V5CS) .... .... .... .... .... .... .... ...0 = V1: V1 netlogon response not requested .... .... .... .... .... .... .... ..1. = V5: Client requested V5 netlogon response .... .... .... .... .... .... .... .1.. = V5EX: Client requested V5 extended netlogon response .... .... .... .... .... .... .... 0... = V5IP: IP information not requested .... .... .... .... .... .... ...1 .... = V5CS: Client has asked for the closest site information .... ...0 .... .... .... .... .... .... = NT4: Only full AD DS requested ...0 .... .... .... .... .... .... .... = PDC: PDC server not requested ..0. .... .... .... .... .... .... .... = IP: IP details not requested .0.. .... .... .... .... .... .... .... = Local: Client is not local 0... .... .... .... .... .... .... .... = GC: Global Catalog not requested attributes: 1 item AttributeDescription: Netlogon -- Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.
- References:
- Prev by Date: [Wireshark-bugs] [Bug 5372] New: Wireshark crash when loading capture (SVN only? Linux only?)
- Next by Date: [Wireshark-bugs] [Bug 1163] Dissector bug. ISO8073 COTP protocol.
- Previous by thread: [Wireshark-bugs] [Bug 5372] New: Wireshark crash when loading capture (SVN only? Linux only?)
- Next by thread: [Wireshark-bugs] [Bug 5372] [PATCH] Wireshark crash when loading capture (SVN only? Linux only?)
- Index(es):