Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Citrix application breakout - take care of Microsoft calculator

from [Gleb Paharenko] Network Security [Permanent Link]
Subject: Re: Citrix application breakout - take care of Microsoft calculator
Date: Mon, 10 Mar 2008 09:55:27 +0200 
Thank you Stefan.

A question for all. Is there some checklist about what should be
stripped out of the default Windows shippment for similar cases?

 I'm especially interested in hardening windows for kiosks. There
bunch of applications (screen keyboard, notepad, others?) which should
be removed.

2008/3/7, Stefan Gora <stefan.gora@secorvo.de>:

Dear all,

 I'm not shure if the following issue is already known or exciting,
 nevertheless the following attack vector found during a penetration test
 might be interesting:

 A customer has built a Citrix environment for a partner company to
 provide access to a specific application. This application was intended
 to be the only application accessible for this partner. It was possible
 to get a remote task manager with CRTL-F3, but no other way of
 interacting with the Citrix Server (e.g. through printing or so).

 Unfortunately they have integrated Microsoft's calculator into the
 application. A bad idea - guess why ;-).

 Using the calculator you are able to do funny stuff: Open the calculator
 and click "info". Klick on the licence agreement and here you go, you
 have got an editor. With this you can use "open file" and browse the
 server, find for example Word and rightclick on "Open" - Word is
 running, and all other applications which you like as well ...

 I think this can easily be fixed using more restrictive file
 permissions, but I thought maybe some of you might find this information
 useful.

 Stefan

 --
 --------------------------------------------------------
 Identity Management Symposium 22.-23.04.2008 KA/Ettlingen
 http://www.identity-management-symposium.de
 --------------------------------------------------------

 Stefan Gora
 Security Consultant

 Secorvo Security Consulting GmbH
 Ettlinger Strasse 12-14, D-76137 Karlsruhe
 Tel. +49 721 255171-302, Fax +49 721 255171-100
 stefan.gora@secorvo.de, http://www.secorvo.de
 PGP: 5EAD 34FE F3C1 0FEB  058F 4DD0 E6B3 FF4A

 Mannheim HRB 108319, Geschaeftsfuehrer: Dirk Fox

 ------------------------------------------------------------------------
 This list is sponsored by: Cenzic

 Need to secure your web apps NOW?
 Cenzic finds more, "real" vulnerabilities fast.
 Click to try it, buy it or download a solution FREE today!

 http://www.cenzic.com/downloads
 ------------------------------------------------------------------------





-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: GWAS vs STAR WAS, Andre Gironda
Next by Date:  RE: Citrix application breakout - take care of Microsoft calculator, Erik Soosalu
Previous by Thread:  RE: Citrix application breakout - take care of Microsoft calculator, Shenk, Jerry A
Next by Thread:  Re: Citrix application breakout - take care of Microsoft calculator, sherwyn . williams
Indexes:  [Date] [Thread] [Top] [All Lists]