[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Attacking the local LAN via XSS

To: "Zed Qyves" <zqyves.spamtrap@xxxxxxxxx>
Subject: Re: [Full-disclosure] Attacking the local LAN via XSS
From: "pdp (architect)" <pdp.gnucitizen@xxxxxxxxxxxxxx>
Date: Fri, 4 Aug 2006 10:36:17 +0100

you are right but not completely... :)

HTTP PORT is not possible on domain different from the current domain,
unless browser hacks is employed.

regards

On 8/4/06, Zed Qyves <zqyves.spamtrap@xxxxxxxxx> wrote:

Did not attend BlackHet either however I doubt this is the attack vector.

>   2. border router vulnerable to XSS

Just as fingerprinting normal web servers, the web server used for
router HTTP management can be fingerprinted, hence the router vendor
itself. Use well known default username/password combination and few
automatic POSTS via javascript/AJAX to "hack" the router and add the
route you want.

Just a thought.

ZQ

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/



--
pdp (architect)
http://www.gnucitizen.org

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Attacking the local LAN via XSS
  - From: Thor Larholm

References:
- Re: [Full-disclosure] Attacking the local LAN via XSS
  - From: Zed Qyves

Prev by Date: [Full-disclosure] Barracuda Spam Firewall: Administrator Level Remote Command Execution [ID-20060804-01]
Next by Date: Re: [Full-disclosure] Attacking the local LAN via XSS
Previous by thread: Re: [Full-disclosure] Attacking the local LAN via XSS
Next by thread: Re: [Full-disclosure] Attacking the local LAN via XSS
Index(es):
- Date
- Thread