Bugtraq: Re: Microsoft Terminal Services vulnerable to MITM-attacks.

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: Microsoft Terminal Services vulnerable to MITM-attacks.

From: Henrik Storner <henrik-bb () hswn dk>
Date: Fri, 4 Apr 2003 05:32:39 +0000 (UTC)

In <1049409543.15153.6.camel () devinlinux netilla com> Devin Heitmueller
<dheitmueller () netilla com> writes:

On Wed, 2003-04-02 at 19:09, Larry Seltzer wrote:

RDP is vulnerable to Man In The Middle attacks


Do you know if ICA (Citrix products) is also vulnerable?


The ICA Protocol is also vulnerable.  They use Diffe-Hellman for key
agreement.  But there is no PKI in the protocol to verify the identity
of the server.


AFAIK, Citrix' recommendation if you want to guard against this
type of attack is to use their Citrix Secure Gateway software,
which tunnels the ICA protocol data inside an SSL connection.
This uses the normal SSL certificate handshake to verify the
identity of the server.


Henrik Storner

By Date By Thread

Current thread:

Microsoft Terminal Services vulnerable to MITM-attacks. Erik Forsberg (Apr 02)
- RE: Microsoft Terminal Services vulnerable to MITM-attacks. Larry Seltzer (Apr 03)
  - Re: Microsoft Terminal Services vulnerable to MITM-attacks. Erik Forsberg (Apr 03)
  - RE: Microsoft Terminal Services vulnerable to MITM-attacks. Devin Heitmueller (Apr 03)
    - Re: Microsoft Terminal Services vulnerable to MITM-attacks. Henrik Storner (Apr 04)
- <Possible follow-ups>
- Re: Microsoft Terminal Services vulnerable to MITM-attacks. Carlos Branco (Apr 10)