RE: Remote Desktop/Term. Serv Information leakage

From: Paul Fields (Infosec@plainenglishsecurity.com)
Date: Tue Jul 05 2005 - 11:30:57 EDT

• Next message: Robert BARABAS: "Re: Providers blocking portscans - bad news for pentest?"
• Previous message: Christoph Puppe: "Re: Providers blocking portscans - bad news for pentest?"
• In reply to: kuffya@gmail.com: "Re: Remote Desktop/Term. Serv Information leakage"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

> Thanks to everyone for your input it has all been very
> valuable...FYI the kind of advice I was mainly looking for is
> the sort of thing Paul Fields and a few others posted (on how
> to disable clipboard redirection). Also noted the fact that
> an indirect connection to the internet can have nasty
> results, and all your comments on alternative ways of
> compromising the network (DEBUG, manually typing exploits,
> prnt screen etc).
 
> Again, thanks so much.

One last mention, though you may have come across this with output from
a vulnerability scanner, if you haven't I thought I should mention,
RDP/Terminal Services are vulnerable to a man in the middle attack.

Details here:
 http://www.oxid.it/downloads/rdp-gbu.pdf

Paul

• Next message: Robert BARABAS: "Re: Providers blocking portscans - bad news for pentest?"
• Previous message: Christoph Puppe: "Re: Providers blocking portscans - bad news for pentest?"
• In reply to: kuffya@gmail.com: "Re: Remote Desktop/Term. Serv Information leakage"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:54:31 EDT