NNSquad - Network Neutrality Squad
[ NNSquad ] Off-Path TCP Sequence Number Inference Attack: How Firewall Middleboxes Reduce Security
Off-Path TCP Sequence Number Inference Attack: How Firewall Middleboxes Reduce Security
http://j.mp/K6EWkn (UMich [PDF])
"Abstract-In this paper, we report a newly discovered "offpath TCP
sequence number inference" attack enabled by rewall middleboxes.
It allows an off-path (i.e., not man-inthe-middle) attacker to
hijack a TCP connection and inject malicious content, effectively
granting the attacker write-only permission on the connection.
For instance, with the help of unprivileged malware, we
demonstrate that a successful attack can hijack an HTTP session
and return a phishing Facebook login page issued by a browser.
With the same mechanisms, it is also possible to inject malicious
Javascript to post tweets or follow other people on behalf of the
victim."
- - -
--Lauren--
Lauren Weinstein (lauren@vortex.com): http://www.vortex.com/lauren
Co-Founder: People For Internet Responsibility: http://www.pfir.org
Founder:
- Data Wisdom Explorers League: http://www.dwel.org
- Network Neutrality Squad: http://www.nnsquad.org
- Global Coalition for Transparent Internet Performance: http://www.gctip.org
- PRIVACY Forum: http://www.vortex.com
Member: ACM Committee on Computers and Public Policy
Lauren's Blog: http://lauren.vortex.com
Google+: http://vortex.com/g+lauren / Twitter: http://vortex.com/t-lauren
Tel: +1 (818) 225-2800 / Skype: vortex.com
_______________________________________________
nnsquad mailing list
http://lists.nnsquad.org/mailman/listinfo/nnsquad