NetBIOS Design Allows Traffic Redirection

iago-vL writes "Security researchers at SkullSecurity have demonstrated how the NetBIOS protocol allows trivial hijacking due to its design, through the use of a tool called 'nbpoison' (in the package 'nbtool'). If a DNS lookup fails on Windows, the operating system will broadcast a NetBIOS lookup request that anybody can respond to. One vector of attack is against business workstations on an untrusted network, like a hotel; all DNS requests for internal resources can be redirected (Exchange, proxy, WPAD, etc). Other attack vectors are discussed in a related blog post. Although similar attacks exist against DHCP, ARP and many other LAN-based protocols, we all know that untrusted systems on a LAN means game over. NetBIOS poisoning is much quieter and less likely to break other things."

Re:Eat a dick

I eat pussy

Re:Eat a dick

I eat pussy

AND you read slashdot? Sorry, I call bullshit.

Great response, a -1 downmod (but no facts either)

See subject-line, & realize 1 thing (whoever modded my post down):

You can use your rather weak/effete downmods vs. the facts in my posting, but, that doesn't change the facts I extoll here vs. NetBIOS + DNS hassles one bit, NOR does it adversely affect the points I make that allow one to "work-around" these flaws in DNS or NetBIOS until it is fixed...

APK

P.S.=> So much for your 'down mods', to whomever did so to my post. That's rather weak, & quite "ad hominem" in response. If you want to be effective in making my post or myself LOOK BAD? Disprove the points I put into it... then? Then, you may have actually done well, but, until that time?? All you have are your WEAK 'downward mods' & that is about it! apk

Re:Eat a dick

[blackraven14250]

I eat pussy

[citation needed]

Fir5t

the c4oosing Platform for the