(/home/sate/Testcases/c/cve/wireshark-1.2.0/plugins/profinet/packet-dcom-cba-acco.c) |
| |
| 3798 | | | dissect_ICBAAccoMgt2_GetConsIDs_resp(tvbuff_t *tvb, int offset, |
| 3799 | | | packet_info *pinfo, proto_tree *tree, guint8 *drep) |
| 3800 | | | { |
| 3801 | | | guint32 u32Count; |
| 3802 | | | guint32 u32Pointer; |
| 3803 | | | guint32 u32ArraySize; |
| 3804 | | | guint32 u32Idx; |
| 3805 | | | guint32 u32ConsID; |
| 3806 | | | guint32 u32HResult; |
| 3807 | | | |
| 3808 | | | |
| 3809 | | | offset = dissect_dcom_that(tvb, offset, pinfo, tree, drep); |
| 3810 | | | |
| 3811 | | | offset = dissect_dcom_DWORD(tvb, offset, pinfo, tree, drep, |
| 3812 | | | hf_cba_acco_count, &u32Count); |
| 3813 | | | |
| 3814 | [+] | | if (check_col(pinfo->cinfo, COL_INFO)) { |
 |
| 3815 | | | if (u32Count) { |
| 3816 | | | col_append_fstr(pinfo->cinfo, COL_INFO, ": Cnt=%u ConsID=", u32Count); |
| 3817 | | | } else { |
| 3818 | | | col_append_fstr(pinfo->cinfo, COL_INFO, ": Cnt=%u", u32Count); |
| 3819 | | | } |
| 3820 | | | } |
| 3821 | | | |
| 3822 | | | offset = dissect_dcom_dcerpc_pointer(tvb, offset, pinfo, tree, drep, |
| 3823 | | | &u32Pointer); |
| 3824 | | | if (u32Pointer) { |
Event 3:
Taking true branch. u32Pointer evaluates to true.
hide
|
|
| 3825 | | | offset = dissect_dcom_dcerpc_array_size(tvb, offset, pinfo, tree, drep, |
| 3826 | [+] | | &u32ArraySize); |
Event 4:
dissect_dcom_dcerpc_array_size() does not initialize u32ArraySize. - This may be because of a failure case or other special case for dissect_dcom_dcerpc_array_size().
hide
|
|
 |
| 3827 | | | |
| 3828 | | | u32Idx = 1; |
| 3829 | | | while (u32ArraySize--) { |
Uninitialized Variable
u32ArraySize was not initialized. The issue can occur if the highlighted code executes. See related events 4 and 6. Show: All events | Only primary events |
|
| |