Bugtraq mailing list archives
Re: Microsoft Terminal Services vulnerable to MITM-attacks.
From: Henrik Storner <henrik-bb () hswn dk>
Date: Fri, 4 Apr 2003 05:32:39 +0000 (UTC)
In <1049409543.15153.6.camel () devinlinux netilla com> Devin Heitmueller <dheitmueller () netilla com> writes:
On Wed, 2003-04-02 at 19:09, Larry Seltzer wrote:RDP is vulnerable to Man In The Middle attacksDo you know if ICA (Citrix products) is also vulnerable?The ICA Protocol is also vulnerable. They use Diffe-Hellman for key agreement. But there is no PKI in the protocol to verify the identity of the server.
AFAIK, Citrix' recommendation if you want to guard against this type of attack is to use their Citrix Secure Gateway software, which tunnels the ICA protocol data inside an SSL connection. This uses the normal SSL certificate handshake to verify the identity of the server. Henrik Storner
Current thread:
- Microsoft Terminal Services vulnerable to MITM-attacks. Erik Forsberg (Apr 02)
- RE: Microsoft Terminal Services vulnerable to MITM-attacks. Larry Seltzer (Apr 03)
- Re: Microsoft Terminal Services vulnerable to MITM-attacks. Erik Forsberg (Apr 03)
- RE: Microsoft Terminal Services vulnerable to MITM-attacks. Devin Heitmueller (Apr 03)
- Re: Microsoft Terminal Services vulnerable to MITM-attacks. Henrik Storner (Apr 04)
- <Possible follow-ups>
- Re: Microsoft Terminal Services vulnerable to MITM-attacks. Carlos Branco (Apr 10)
- RE: Microsoft Terminal Services vulnerable to MITM-attacks. Larry Seltzer (Apr 03)