[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-disclosure] Bypassing Personal Firewall, is it that* hard?

To: "'Bipin Gautam'" <gautam.bipin@xxxxxxxxx>, "'Zone Labs Security Team'" <security@xxxxxxxxxxxx>
Subject: RE: [Full-disclosure] Bypassing Personal Firewall, is it that* hard?
From: "Aditya Deshmukh" <aditya.deshmukh@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Tue, 4 Oct 2005 07:59:46 +0530

> say... a backdoor want to communicate to its server... It can do
> is,.... use a trusted internal application to do the job. Suppose; it
> creates a batch file run the batch file  (evil.bat) & executes this
> command

this has been going on for years - there are some trojans that create 
An invisible browser window at the screen center to comm with the 
Server. 

This is the reason most firewalls like show you a popup saying 
the [app-name] trying to connect to [server-name] at [port-number]






________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Bypassing Personal Firewall, is it that* hard?
  - From: Andrei Zlate-Podani

References:
- [Full-disclosure] Bypassing Personal Firewall, is it that* hard?
  - From: Bipin Gautam

Prev by Date: RE: [Full-disclosure] Different Claims by ZoneLabs on the "BypassingPersonalFirewall (Zone Alarm Pro) Using DDE-IPC" issue
Next by Date: [Full-disclosure] [SECURITY] [DSA 839-1] New apachetop packages fix insecure temporary file
Previous by thread: Re: [Full-disclosure] Bypassing Personal Firewall, is it that* hard?
Next by thread: Re: [Full-disclosure] Bypassing Personal Firewall, is it that* hard?
Index(es):
- Date
- Thread