[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Forticlient VPN client credential interception vulnerability

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Forticlient VPN client credential interception vulnerability
From: Thierry Zoller <thierry@xxxxxxxxx>
Date: Wed, 01 May 2013 12:36:17 +0200



You got to be kidding me...

FORTICLIENT VPN CLIENT CREDENTIAL INTERCEPTION VULNERABILITY

When the FortiClient VPN client is tricked into connecting to a proxy
server rather than to the original firewall (e.g. through ARP or DNS
spoofing,) it detects the wrong SSL certificate but it only warns the
user _AFTER_ it has already sent the password to the proxy.



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Forticlient VPN client credential interception vulnerability
  - From: Patrick Webster

References:
- [Full-disclosure] Forticlient VPN client credential interception vulnerability
  - From: Philippe oechslin

Prev by Date: [Full-disclosure] Forticlient VPN client credential interception vulnerability
Next by Date: [Full-disclosure] [Security-news] SA-CONTRIB-2013-046 - Filebrowser - Reflected Cross Site Scripting (XSS)
Previous by thread: [Full-disclosure] Forticlient VPN client credential interception vulnerability
Next by thread: Re: [Full-disclosure] Forticlient VPN client credential interception vulnerability
Index(es):
- Date
- Thread