One Article Review
| Source |  TrendLabs Security |
|---|---|
| Identifiant | 6499 |
| Date de publication | 2016-08-04 19:40:33 (vue: 2016-08-04 19:40:33) |
| Titre | BlackHat2016: badWPAD – The Doubtful Legacy of the WPAD Protocol |
| Texte | WPAD is a protocol that allows computers to automatically discover Web proxy configurations and is primarily used in networks where clients are only allowed to communicate to the outside world through a proxy - which is the case in most enterprises. To easily configure proxy settings for different types of applications which require an internet connection, WPAD, also known as “autoproxy”, was first implemented and promoted by Netscape® 2.0 in 19961 for Netscape Navigator® 2.0. The tool can apply to any system that supports proxy auto-discovery, like most browsers, operating systems and some applications not working from operating systems.Warnings of security issues have been around for many years. These risks have been recognized in the security community for years, but for some reason been left largely ignored. In fact it is relatively easy to exploit WPAD. In basic terms, the security issue with the WPAD protocol revolves around the idea that whenever the protocol makes a request to a proxy, anyone else can create a service that answers that request and can practically impersonate the real web proxy (Man-in-the-Middle attack).Post from: Trendlabs Security Intelligence Blog - by Trend MicroBlackHat2016: badWPAD – The Doubtful Legacy of the WPAD Protocol |
| Envoyé | Oui |
| Condensat | 19961 allowed allows also answers any anyone applications apply are around attack auto automatically badwpad basic been blackhat2016: blog browsers but can case clients communicate community computers configurations configure connection create different discover discovery doubtful easily easy else enterprises exploit fact first from from: have idea ignored impersonate implemented intelligence internet issue issues known largely left legacy like makes man many microblackhat2016: middle most navigator® netscape netscape® networks not only operating outside post practically primarily promoted protocol proxy real reason recognized relatively request require revolves risks security service settings some supports system systems terms these through tool trend trendlabs types used warnings web whenever where which working world wpad years “autoproxy†|
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.