New Exploit Uses JavaScript To Compromise Intranets, VPNs

redsoxh8r writes "Security researcher Robert Hansen, known as Rsnake, has developed a new class of attack that abuses a weakness in many corporate intranets and most browsers to compromise remote machines with persistent JavaScript backdoors. Threatpost reports: 'The attacks rely on the long-term caching policies of some browsers and take advantage of the collisions that can occur when two different networks use the same non-routable IP address space, which happens fairly often because the amount of address space is quite small. The bottom line is that even a moderately skilled attacker has the ability to compromise remote machines without the use of any vulnerability or weakness in the client software.'"

Author of article is a fucking cunt

"But because the amount of non-routable IP address space most commonly used for intranets is so small--about 1280 addresses, Hansen estimates--collisions between networks often occur."

Wait, wat?

RFC1918 has only 1280 addresses?

I stopped reading at this point. If authors cannot get _BASIC_ facts right, how the fuck can I believe _ANYTHING_ else this cunt says?

In short, this whole thing is a load of shit. Sure, its not difficult to do if you have full control of a network. But whats hard when you have full control?

tl;dr author is a fucking clueless poseur.

Re:IPv6?

IPv6I don't like hackers to be able to nmap my whole subnet from remote to find some unpatched box. IPv6 doesn't support firewalls or NATs so its trivial to scan an address space, even one as big as IPv6.

I like protocols with encryption. IPv6 supports no encryption at all on the IP layer.

I like network stacks that have been through the bugs like land, smurf, ping of death, and other exploits that IPv4 has dealt with. IPv6 has yet to be tested against dedicated black hats.

Existing issues in IPv4 are a handful already. Why add another protocol to the mix that may make things worse?