Wireshark-bugs: [Wireshark-bugs] [Bug 2833] New: Microsoft-specific OIDs not recognized by BER d
Date Index · Thread Index · Other Months · All Mailing Lists
Date Prev · Date Next · Thread Prev · Thread Next
From: bugzilla-daemon@xxxxxxxxxxxxx
Date: Thu, 28 Aug 2008 06:42:44 -0700 (PDT)
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=2833

           Summary: Microsoft-specific OIDs not recognized by BER dissector.
           Product: Wireshark
           Version: 1.0.0
          Platform: PC
               URL: https://www.paypal.com
        OS/Version: All
            Status: NEW
          Severity: Enhancement
          Priority: Low
         Component: Wireshark
        AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
        ReportedBy: adam.buchbinder@xxxxxxxxx


Build Information:

--
Capture a session that involves an SSL handshake with https://www.paypal.com.
In the certificate that PayPal sends, the following OIDs are not implemented:

1.3.6.1.4.1.311.60.2.1.3 (iso.3.6.1.4.1.311.60.2.1.3) (set to "US")
1.3.6.1.4.1.311.60.2.1.2 (iso.3.6.1.4.1.311.60.2.1.2) (set to "Delaware")

These appear to belong to Microsoft (1.3.6.1.4.1.311), but they're not
described in the major OID catalogs.

I had thought that these were just copies of the S, L and C fields (the cert
described at
http://www.ubs.com/1/e/ebanking/internet/internet_security/requirements.html
has the .1 field as well), but PayPal's C=US and L=San Jose.

There's another certificate with the .3 field at https://banking.postbank.de/;
and another with the .1 field as well at https://www.dresdner-privat.de/.


-- 
Configure bugmail: https://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.