Sunday, June 15, 2008

RDP Encrption - MITM Vulnerability

Just doing regular vulnerability scan and found "Microsoft Windows Remote Desktop Protocol Server Private Key Disclosure Vulnerability" on one of my home servers.

It is a repeatable vulnerability and proven it had problem.

Massimiliano Montoro had written a detailed paper on this and it can be found at

Will try to do an exercise soon to test using Cain & Abel.

No comments: