lesson 15 client side vulnerabilities and you. active server pages ms’s answer to the scripting...

Lesson 15

Client Side Vulnerabilitiesand you

Active Server Pages

• MS’s answer to the scripting world of PERL and CGI on Unix

• Usually Written In Visual Basic Script (VBS)

• Provides:– State– Backend data base access– Generally display HTML in Browser

ASP (2)

Pros:– Ability to Output HTML file on the fly

Con– Numerous Vulnerabilities that allow

attackers to view ASP code itself

-- Attackers can learn further vulnerabilities in program logic

-- Attackers can view sensitive info

ASP (3)

Con

• Numerous Vulnerabilities that allow attackers to view ASP code itself– Attackers can learn further

vulnerabilities in

program logic– Attackers can view sensitive info

Well Known Vulnerabilities

ASP DOT Bug Vulnerability (IIS 3.0)

http://127.134.10.1/scripts/myexample.asp.– Allowed hacker to view ASP source code

– Now patched

– Patch intoduced new vulnerabilities

http://127.134.10.1/scripts/myexample%2easp

Well Known Vulnerabilities(2)

ASP Alternate Data Streams (IIS 3.0)http://127.134.10.1/scripts/myexample.asp::$data

– Allowed file download

– Limit file access rights of all source code by removing read access of the Everyone Group

– Only allow execute permission

Well Known Vulnerabilities(3)

Show code.asp Vulnerability (IIS 4.0)

http://127.134.10.1/mscode/samples/SELECTOR/showcode.asp?source=/../../../../../boot.ini

• Script did not restrict use of “..”

• Allows Hacker to download files

• In this example Hacker Views Boot.ini file

• Applying hot fix corrected the problem

Well Known Vulnerabilities(4)

Codebrws.asp Vulnerability (IIS 4.0)http://127.134.10.1/iissamples/exair/howitworks/

codebrws.asp?source=/../../../../../winnt/repair/setup.log

• Allows Hacker to View any file on target system

• Applying hot fix corrected the problem

Managing Your Security

• IE Configuration Very Flexibile

• Checking WWW Page Certificates– File Properties

• IE TOOLs--Internet Options– Advanced

– Security

– Content

MS Advanced Options

• Can Set SSL/TLS Options

• Warn About Invalid Digital Certificates

• Warn on form submission redirection

• Much More just see >>>>>>>

Using File Properties

• Allows User to Check on Web Page properties

• Allows User to verify Digital Certificates

• Allows User to verify encryption

MS Internet Security Zones

Next Series of Slide Shows You How User (Client) can select the security they desire while interacting on the Internet.

MS Internet Content

Next Series of Slide Shows You Can Manage Digital Certificates on

your home computer

Checking Your Open Ports

Checking Your Open Ports

Checking Your IP Configuration

Checking Your IP Configuration

Checking Your IP Configuration

SUMMARY

•Client Side Security is Your Responsibility

•Do not be afraid to experiment