Bugtraq mailing list archives
RE: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer
From: "David Schwartz" <davids () webmaster com>
Date: Mon, 9 Feb 2004 14:01:18 -0800
This is a total non-issue. Almost every attack vector that could place a malicious DLL in the same directory as IE could replace IE itself or snap screen captures. SSL is not intended to protect against attacks on either endpoint. This is like complaining that your safe doesn't keep people from breaking your windows. Of course Microsoft has no intended fix, nothing is broken. Ironically, the only real fix against someone replacing your browser with a browser that steals data that is sent encrypted is to integrate the retrieval/rendering logic into the operating system such that it cannot be replaced. Something for which nearly every expert in the field has argued that there is no rational technical justification. In other words, if you can choose Netscape as your default browser, then an attacker can choose a browser that tees off your decrypted data. The only solution is for you to be unable to change your browser. DS
Current thread:
- Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Disclosure From OSSI (Feb 09)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Seth Arnold (Feb 09)
- RE: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer David Schwartz (Feb 09)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Darren Reed (Feb 10)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 10)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer John D. Hardin (Feb 11)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 11)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Darren Reed (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Darren Reed (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer der Mouse (Feb 12)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Darren Reed (Feb 10)
- Re: Round One: "DLL Proxy" Attack Easily Hijacks SSL from Internet Explorer Glynn Clements (Feb 12)