Skip to main content

Researchers demo new IPv6 attack against Windows 8 PCs

posted onAugust 4, 2013
by l33tdawg

Researchers at Neohapsis Labs have discovered an ingeniously simple man-in-the-middle attack that can hijack the IPv6 capability of a PC to silently intercept all web traffic on a target network.

Due for full disclosure at the DEF CON 21 conference, the attack's design isn't new - the similar Stateless Address Auto Configuration (SLAAC) principle was demonstrated at Infosec in 2011 - but extends it to Windows 8 segments for the first time.

Assuming only an available IPv4 address on the network, the team were able to use a 'Sudden Six' script run from a Linux host to rapidly insert the system as a rogue IPv6 router. This IPv6 overlay was able to intercept all traffic travelling through it, which is to say all traffic on that network.

Source

Tags

Windows Microsoft IPv6 Security

You May Also Like

Recent News

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th

Friday, June 7th