« Sessions And Cookies in PHP Programming
Use PHP To Convert Text To Images To Block Spammers »

Remote Desktop Protocol Network Security Advisory

Summary
The aim of this advisory is to warn Remote Desktop users about the feasibility of invisible man-in-the-middle attacks against Microsoft Terminal Services. This is an update of Erik Forsberg’s advisory released in April 2003 available at the following link: http://www.securityfocus.com/archive/1/317244. In short, mitm attacks on RDP protocol are still possible and they can be completely invisible for Terminal Services users.

Systems Affected
This advisory is born after experiments and researches on the following environment:
- Terminal Server software: Microsoft Windows Terminal Services using RDP v5.2
- Terminal Server Client software: Microsoft Remote Desktop for Windows XP v5.1.2600.2180

File (PDF) rdp-gbu.pdf 

This entry was posted on Monday, March 26th, 2007 at 10:03 am and is filed under Network Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

You must be logged in to post a comment.

Need a web and database programmer? Contact The PHP Kemist

eCommerce Web Site Design | PHP Web Programmers | Website Development & Search Engine Optimization
Network Security Programmers | Shopping Carts For eCommerce | Internet & Search Engine Marketing
Salt Lake City Utah Website Design | Bay Area California Website Design | San Jose California Website Design