New Exploit Uses JavaScript To Compromise Intranets, VPNs

Posted by timothy on Thursday June 11, 2009 @10:40AM from the criminal-enterprises-deal-in-cache dept.

redsoxh8r writes "Security researcher Robert Hansen, known as Rsnake, has developed a new class of attack that abuses a weakness in many corporate intranets and most browsers to compromise remote machines with persistent JavaScript backdoors. Threatpost reports: 'The attacks rely on the long-term caching policies of some browsers and take advantage of the collisions that can occur when two different networks use the same non-routable IP address space, which happens fairly often because the amount of address space is quite small. The bottom line is that even a moderately skilled attacker has the ability to compromise remote machines without the use of any vulnerability or weakness in the client software.'"

2 of 87 comments (clear)

Min score:

Reason:

Sort:

IPv6? by Facegarden · 2009-06-11 10:43 · Score: 3, Interesting

Knowing basically nothing about anything involved, i see address space limitations are a partial issue here - does that mean some use of IPv6 would help somewhere somehow?
-Taylor

--
Worldwide Military budgets: $2100 billion. Worldwide Space Exploration budgets: $38 billion. Really, world? Really?
Re:Network 10 has more than 1280 addresses. by prockcore · 2009-06-11 11:30 · Score: 4, Interesting

While we're clearing up misconceptions, the 127.x.x.x network is an entire class A loopback.
That means 127.44.55.66 is identical to 127.0.0.1