|
Microsoft's RDP Remote Desktop Protocol vulnerability |
|
|
|
Friday, 30 April 2010 |
Microsoft's RDP (Remote Desktop Protocol) and it's associated "terminal service" client and server apps have been widely used since Windows 2000 days for Windows server administration. RDP gives delivers the server's complete remote desktop to a client. RDP has been improved over time, and is now pretty much the de facto standard for remote administration in most datacenters.
If the default Windows installation is taken, and no further protections around encryption are implemented, that RDP is easily compromised. This is normally done by capturing an RDP login exchange, usually using a Man-in-the-Middle attack, then decrypting the captured packets to arrive at the password. CAIN (www.oxid.it) does a great job at this task. Describing an attack in theory is great, but I find that people don’t often take it seriously until the SEE it work in their environment. For this reason, we’ve attached a short video of such an attack, with a brief description of how MITM attacks. This attack works even if you change the “Server Authentication Verification” discussed above.
See the video here.
|
Video-Tutorials 
