[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SSL VPNs and security

To: E Mintz <net4n6@xxxxxxxxx>
Subject: Re: SSL VPNs and security
From: Michal Zalewski <lcamtuf@xxxxxxxxxxxx>
Date: Fri, 9 Jun 2006 08:31:51 +0200 (CEST)

On Fri, 9 Jun 2006, E Mintz wrote:

> How about some real-world, application specific exploits?

There's an example of a XSS that can be used to compromise Cisco Web VPN
session in the text.

> So, please show me an example of an actual compromise and I'll listen.
> Otherwise, put up, or shut up!

You're not strictly required to listen, you know ;)

/mz

Follow-Ups:
- Re: SSL VPNs and security
  - From: E Mintz

References:
- SSL VPNs and security
  - From: Michal Zalewski

Prev by Date: Re: SSL VPNs and security
Next by Date: [ GLSA 200606-08 ] WordPress: Arbitrary command execution
Previous by thread: Re: SSL VPNs and security
Next by thread: Re: SSL VPNs and security
Index(es):
- Date
- Thread