Microsoft ClickOnce MITM Vulnerabilities

[Tom Ritter <tom () ritter vg>]

ClickOnce is a Microsoft technology intended to make deployment of
desktop applications extremely simple.  When deployed over HTTP, it is
vulnerable to several types of Man in the Middle attacks; despite the
ability to sign the executables.  See attached.

-tom

Attachment: ClickOnce-MITM.txt
Description: