BugTraq
Microsoft Terminal Services vulnerable to MITM-attacks. Apr 01 2003 10:05PM
Erik Forsberg forsberg+btq@cendio.se (forsberg+btq cendio se) (1 replies)
RE: Microsoft Terminal Services vulnerable to MITM-attacks. Apr 03 2003 12:09AM
Larry Seltzer (larry larryseltzer com) (2 replies)
RE: Microsoft Terminal Services vulnerable to MITM-attacks. Apr 03 2003 10:39PM
Devin Heitmueller (dheitmueller netilla com) (1 replies)
Re: Microsoft Terminal Services vulnerable to MITM-attacks. Apr 04 2003 05:32AM
Henrik Storner (henrik-bb hswn dk)
Re: Microsoft Terminal Services vulnerable to MITM-attacks. Apr 03 2003 02:49PM
Erik Forsberg (forsberg cendio se)
"Larry Seltzer" <larry (at) larryseltzer (dot) com [email concealed]> writes:

> >>RDP is vulnerable to Man In The Middle attacks (from here on referred to as MITM
> attacks). The attack works as follows:
>
> Do you know if ICA (Citrix products) is also vulnerable?

We haven't investigated the ICA protocol, so basically, we don't
know. However, a Google search on "secureica man in the middle attack"
gives some rather interesting results.

There seems to be many different ways of connecting to Citrix
MetaFrame servers. SecureICA is only one of them.

\EF
--
Erik Forsberg Telephone: +46-13-21 46 00
Cendio Systems Web: http://www.thinlinc.com

[ reply ]
 

Privacy Statement
Copyright 2010, SecurityFocus