login | register | shoutbox

 What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » General » Forum & Website » Mistruth in FAQ

Mistruth in FAQ
Author: Message:
Burningmace
Junior Member
**


Posts: 20
Joined: Sep 2008
O.P. RE: Mistruth in FAQ
I meant more in the way of an attacker could manipulate the packets in order to exploit a vulnerability in either the Wininit library or in Plus! itself. It does not matter that the connection closes at the end of the request, as a man in the middle attack using ARP/DNS spoofing allows the attacker to manipulate both sides of the connection (client end and server end) for the entire duration of the connection.

The sound reference was regarding hypothetical vulnerabilities in the sound library. If a vulnerability was found it would not be hard to send a malformed sample that exploited the vulnerability directly to the server, thus owning the client box.

Edit: Furthermore, there is no way to tell if someone has ARP spoofed your update connection in order to download malware to your machine. Even if you force people to download directly from your website (open their browser to the URL of the update page) an attacker can just spoof the DNS and host a fake page himself that contains a Plus! installer with malware attached.

This post was edited on 09-23-2008 at 09:12 PM by Burningmace.
09-23-2008 09:00 PM
Profile E-Mail PM Find Quote Report
« Next Oldest Return to Top Next Newest »

Messages In This Thread
Mistruth in FAQ - by Burningmace on 09-23-2008 at 07:46 PM
RE: Mistruth in FAQ - by matty on 09-23-2008 at 08:09 PM
RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 08:15 PM
RE: Mistruth in FAQ - by matty on 09-23-2008 at 08:32 PM
RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 09:00 PM
RE: Mistruth in FAQ - by ShawnZ on 09-23-2008 at 09:35 PM
RE: RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 09:51 PM
RE: Mistruth in FAQ - by riahc4 on 09-23-2008 at 10:02 PM
RE: RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 10:11 PM
RE: Mistruth in FAQ - by Voldemort on 09-23-2008 at 10:05 PM
RE: Mistruth in FAQ - by ShawnZ on 09-23-2008 at 10:22 PM
RE: RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 10:27 PM
RE: Mistruth in FAQ - by foaly on 09-23-2008 at 10:44 PM
RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 11:01 PM
RE: RE: Mistruth in FAQ - by segosa on 09-23-2008 at 11:41 PM
RE: Mistruth in FAQ - by Link_of_Hyrule on 09-23-2008 at 11:09 PM
RE: Mistruth in FAQ - by ShawnZ on 09-23-2008 at 11:24 PM
RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 11:31 PM
RE: Mistruth in FAQ - by Burningmace on 09-23-2008 at 11:58 PM
RE: RE: Mistruth in FAQ - by segosa on 09-24-2008 at 12:21 AM
RE: Mistruth in FAQ - by ShawnZ on 09-24-2008 at 12:10 AM
RE: Mistruth in FAQ - by Burningmace on 09-24-2008 at 12:20 AM
RE: Mistruth in FAQ - by WDZ on 09-24-2008 at 12:35 AM
RE: Mistruth in FAQ - by Burningmace on 09-24-2008 at 12:37 AM
RE: RE: Mistruth in FAQ - by segosa on 09-24-2008 at 01:10 AM
RE: Mistruth in FAQ - by Lou on 09-24-2008 at 01:10 AM
RE: RE: Mistruth in FAQ - by Burningmace on 09-24-2008 at 10:09 AM
RE: Mistruth in FAQ - by Menthix on 09-24-2008 at 11:25 AM
RE: Mistruth in FAQ - by Spunky on 09-24-2008 at 01:38 PM


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts 		HTML is Off
myCode is On
Smilies are On
[img] Code is On