Network Security: Detailed info on Re: [Full-Disclosure] NAT router inbound network traffic subversion

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security FullDisclosure

[Top] [All Lists]

Re: [Full-Disclosure] NAT router inbound network traffic subversion

from [morning_wood] Network Security

[Permanent Link]

Subject:	Re: [Full-Disclosure] NAT router inbound network traffic subversion
Date:	Fri, 28 Jan 2005 03:32:20 -0800

scenario...

NAT client browses web...
NAT client initates a HTTP request to do this...
ROUTER returns the request to NAT client...
( normal activity )

attacker website exploits client browser...
exploit drops and executes "badfile.exe"
"badfile.exe" hooks iexplore.exe...

"badfile.exe" is 'reverse connecting trojan'...
"badfile.exe" initiates a HTTP  request to do this...
attacker's "badfile.exe"' 'client' is waiting with a HTTP server...

the new hooked browser initiates a HTTP request to the attacker.
NAT client is now connected to the attacker
through the ROUTER ( kinda like browsing the web huh? )
attacker now has unrestricted packet via the NAT client,
that is where ??? BEHIND YOUR ROUTER

atacker now can do a he wishes to the rest of your network
( GAME OVER )


Cheers,
m.w
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[Full-Disclosure] NAT router inbound network traffic subversion, Kristian Hermansen Re: [Full-Disclosure] NAT router inbound network traffic subversion, morning_wood <= Re: [Full-Disclosure] NAT router inbound network traffic subversion, Joe Re: [Full-Disclosure] NAT router inbound network traffic subversion, Darren Bounds Re: [Full-Disclosure] NAT router inbound network traffic subversion, bart2k Re: [Full-Disclosure] NAT router inbound network traffic subversion, Bart . Lansing RE: [Full-Disclosure] NAT router inbound network traffic subversion, Mark Senior

Previous by Date:	Re: [Full-Disclosure] "Advances in Security" in the Linux Kernel and RedHat idiocy, Brad Spengler
Next by Date:	[Full-Disclosure] Winamp Exploit (POC) 5.08 Stack Overflow, Rojodos
Previous by Thread:	[Full-Disclosure] NAT router inbound network traffic subversion, Kristian Hermansen
Next by Thread:	Re: [Full-Disclosure] NAT router inbound network traffic subversion, Joe
Indexes:	[Date] [Thread] [Top] [All Lists]