1 / 9

Attack on SSHv1 Using DNS Spoofing and MITM Techniques

This document details a security vulnerability in SSH version 1, demonstrating an attack through DNS spoofing and a man-in-the-middle (MITM) daemon. The attack begins when a user establishes a connection, unaware that the DNS has been spoofed. The user is presented with a forged public key and, upon entering their password, the attacker gains full access to sensitive data and passwords. This gives the attacker the ability to type commands and hijack the connection without the user's knowledge, exposing them to serious security risks.

cynthia-warren
Download Presentation

Attack on SSHv1 Using DNS Spoofing and MITM Techniques

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Attack on SSHv1 using dsniff By Oleg Kolesnikov ok@cc.gatech.edu

  2. Spoofing DNS

  3. Running MITM daemon

  4. User Establishes a Connection

  5. DNS is Spoofed

  6. User is presented with a forged public key

  7. User Enters Password

  8. Attacker gains Full Access to Data and Passwords Decrypted Login / password Attacker can type in commands and hijack connection

  9. User is not Aware of Attack

More Related