June 19, 2021

Microsoft Haven’t Fixed Year Old IPv6 DoS Vulnerability in Windows

CVE-2010-4669 describes a vulnerability in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008, and Windows 7. Using a simple tool like flood_router6 from the thc-ipv6 package a remote attacker can cause a denial of service (CPU consumption and system hang) by sending multiple Router Advertisement (RA) messages with different source addresses.

The problem is that updating the routing tables and configuring IPv6 addresses requires lots of CPU resources (ie. 100%). If a network is flooded with random router announcements, Windows (and other operating systems like FreeBSD) struggle to update their routing tables. The denial of service remains in affect until the flooding is terminated.

With the inevitable move over to IPv6 this issue which has been known for nearly a year is becoming more and more critical. The problem seems to be that Microsoft and other IPv6 vendors aren’t offering much in the way of solutions.

Juniper Networks, the high performance switch manufacturer, have gone on record to say that they are not fixing this issue until the IETF workgroup has a proposal on a standard way to fix it. We assume Microsoft are following the same thinking.

More information on the vulnerability is available here and here. Below is a video showing the attack in progress:

Note: The Live Hacking Ethical Hacking and Penetration DVD contains the flood_router6 tool.

Intel’s HDCP video encryption reportedly cracked

Developed by Intel for copy protection, High-bandwidth Digital Content Protection (HDCP) seems to have been cracked now that the “HDCP master key” has apparently been published anonymously at pastebin.com. HDCP encrypts the transmission of video signals via DVI, HDMI, DisplayPort and other digital interfaces.

Read the full article here.


Black Hat Video Feed Got Hacked

IBlack Hat ConferenceDG News services reported on July 30 about a security issue in the video streaming service used by the security conference, Black Hat.

Michael Coates, the head of Web security for Mozilla, discovered that he could register an account without providing anything more than an e-mail address, and then use that account on a test login page to access the videos for free.

Read more about this news at Computerworld.

New Live Hacking Channel on YouTube; Ethical Hacking Tutorials Free For All

A new channel has been created on YouTube with free educational videos on ethical and white hat hacking from livehacking.com.

Dr. Ali Jahangiri, a leading information security expert and author of Live Hacking: The Ultimate Guide to Hacking Techniques & Countermeasures for Ethical Hackers & IT Security Experts, is pleased to announce that he has created a channel on the popular online video site YouTube to share his free educational videos on ethical and white hat hacking. The new videos form part of the growing ‘Live Hacking’ brand which includes a book, workshops and a dedicated ethical hacking Linux distribution.

The Live Hacking YouTube channel is a dedicated resource for those wanting to learn about the tools and utilities used by criminal hackers as the first step in preparing to defeat them. At the launch of the new YouTube channel, Dr. Jahangiri uploaded several tutorial videos covering a range of network tools including: p0f (the advanced passive operating system and network fingerprinting utility), dsniff (the password packet sniffer) and nmap (the utility for network exploration and security auditing).

‘I am really excited about these new YouTube videos’ said Dr. Ali Jahangiri. ‘My goal is to encourage people to take information security serious and introduce them to some fundamental tools of the trade.’

To coincide with the launch of the new YouTube channel, the livehacking.com website has also been updated to embed the new videos and also to launch a new ‘Free Weekly Educational Videos’ feature. Livehacking.com also contains information about other projects in the ‘Live Hacking’ brand including details of the Live Hacking Workshops and the Live Hacking Linux distribution.

Dr Jahangiri runs the Live Hacking Workshops internationally to introduce IT professionals to the world of hacking and empower them with the knowledge they need to thwart criminal hackers. The most recent workshop was help in South Africa and was a great success.

The Live Hacking Linux distribution is a ‘Live CD’ that runs directly from the CD and doesn’t need to be installed on the hard-drive. Once booted it can be used to perform penetration tests and ethically hack on your own network to ensure that it is secure from outside intruders.

Dr. Jahangiri is publishing the YouTube videos for free to encourage IT professionals and others to enhance their knowledge and to prepare for the malicious activities of the unscrupulous hacker.