Bugtraq: Re: Microsoft Terminal Services vulnerable to MITM-attacks.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Microsoft Terminal Services vulnerable to MITM-attacks.

From: Carlos Branco <cb () all-is-on com>
Date: 10 Apr 2003 14:18:37 -0000

In-Reply-To: <uod6k5g9fr.fsf () hostname lkpg cendio se>

This means RDP is vulnerable to Man In The Middle attacks (from here
on referred to as MITM attacks).



     Great piece of research by Erik Forsberg and his team.  However, this 
vulnerability does NOT affect Remote Desktop Web connection (aka TSAC), 
when used with SSL.  This is because the RDP web client would rely on the 
Server-Side SSL cert to prove the authenticity of the server, making MTM 
attacks "virtually" impossible.

     Anyway, if you're deploying RDP and are worried about this exploit, 
try running it over SSL.  More information can be found at:
//www.microsoft.com/windows2000/server/evaluation/news/bulletins/tsac.asp

     Carlos Branco, CISSP

By Date By Thread

Current thread:

Microsoft Terminal Services vulnerable to MITM-attacks. Erik Forsberg (Apr 02)
- RE: Microsoft Terminal Services vulnerable to MITM-attacks. Larry Seltzer (Apr 03)
  - Re: Microsoft Terminal Services vulnerable to MITM-attacks. Erik Forsberg (Apr 03)
  - RE: Microsoft Terminal Services vulnerable to MITM-attacks. Devin Heitmueller (Apr 03)
    - Re: Microsoft Terminal Services vulnerable to MITM-attacks. Henrik Storner (Apr 04)
- <Possible follow-ups>
- Re: Microsoft Terminal Services vulnerable to MITM-attacks. Carlos Branco (Apr 10)