Showing 1 - 5 of 5

Files from Jorg Schwenk

Terrapin SSH Connection Weakening: Posted Dec 20, 2023; Authored by Jorg Schwenk, Marcus Brinkmann, Fabian Baumer | Site terrapin-attack.com; In this paper, the authors show that as new encryption algorithms and mitigations were added to SSH, the SSH Binary Packet Protocol is no longer a secure channel: SSH channel integrity (INT-PST) is broken for three widely used encryption modes. This allows prefix truncation attacks where some encrypted packets at the beginning of the SSH channel can be deleted without the client or server noticing it. They demonstrate several real-world applications of this attack. They show that they can fully break SSH extension negotiation (RFC 8308), such that an attacker can downgrade the public key algorithms for user authentication or turn off a new countermeasure against keystroke timing attacks introduced in OpenSSH 9.5. They also identified an implementation flaw in AsyncSSH that, together with prefix truncation, allows an attacker to redirect the victim's login into a shell controlled by the attacker. Related proof of concept code from their github has been added to this archive.; tags | exploit, paper, shell, protocol, proof of concept; advisories | CVE-2023-46445, CVE-2023-46446, CVE-2023-48795; SHA-256 | 3d6be8cc2a9c624a06990226485956c5d92675a632da2182c2546e4af814ff93; Download | Favorite | View

Practical Decryption exFiltration: Breaking PDF Encryption: Posted Oct 1, 2019; Authored by Christian Mainka, Vladislav Mladenov, Jens Mueller, Jorg Schwenk, Sebastian Schinzel, Fabian Ising; The Portable Document Format, better known as PDF, is one of the most widely used document formats worldwide, and in order to ensure information confidentiality, this file format supports document encryption. In this paper, the authors analyze PDF encryption and show two novel techniques for breaking the confidentiality of encrypted documents.; tags | paper; SHA-256 | 517f98746fe2867354db4d9e80fb07916b9d1d2b6c386ab280af27aaadc9b848; Download | Favorite | View

Open-Xchange OX Guard Cross Site Scripting / Signature Validation: Posted Aug 16, 2019; Authored by Hanno Boeck, Juraj Somorovsky, Martin Heiland, Jorg Schwenk, Sebastian Schinzel, Damian Poddebniak, Jens Muller, Marcus Brinkmann; Open-Xchange OX Guard versions 7.10.2 and below suffer from a cross site scripting vulnerability. Open-Xchange OX Guard versions 7.10.1 and below, 2.10.2 and below suffer from a signature validation vulnerability.; tags | exploit, xss; advisories | CVE-2018-9997, CVE-2019-11521; SHA-256 | ea4821effec5ebd51f45bdf732d362fc22eb10a99a7363c2441cceeedc97dfae; Download | Favorite | View

Johnny You Are Fired: Posted May 1, 2019; Authored by Juraj Somorovsky, Jorg Schwenk, Sebastian Schinzel, Damian Poddebniak, Hanno Bock, Jens Muller, Marcus Brinkmann; This archive contains proof of concepts and a whitepaper that describes multiple email client implementations where popular clients for email are vulnerable to signature spoofing attacks.; tags | exploit, paper, spoof, proof of concept; advisories | CVE-2017-17848, CVE-2018-12019, CVE-2018-12020, CVE-2018-12356, CVE-2018-12556, CVE-2018-15586, CVE-2018-15587, CVE-2018-15588, CVE-2018-18509, CVE-2019-8338; SHA-256 | 3356c7f94ef68ddc7268602c64a93e10fbaff874992374b51f89d7cf87f71a0c; Download | Favorite | View

PDF Viewer Signatures Broken: Posted Feb 26, 2019; Authored by Christian Mainka, Vladislav Mladenov, Jorg Schwenk, Karsten Meyer zu Sel-hausen, Martin Grothe | Site nds.ruhr-uni-bochum.de; Researchers from Ruhr-University Bochum in Germany have broken digital signatures on PDFs and managed to create fake signatures on 21 of 22 viewer apps and five out of the seven online PDF digital signing services. This archive contains both whitepapers produced by the university.; tags | exploit, paper; SHA-256 | 88efe7b286cbc56d82c5c5093004db6c1d519f7e41fd7cd34e4b3af7a7a513a3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days