Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Microsoft Patches Spoofing Flaw in ISA Server



 By: Larry Seltzer
2004-11-09
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
Through a flaw in Microsoft's Internet Security and Acceleration Server 2000 and Proxy Server 2.0, users could be served content from malicious sites in lieu of the trusted content they requested.

Microsoft has issued a patch for a flaw in ISA (Internet Security and Acceleration) Server 2000 and Proxy Server 2.0. According to the advisory on the bug, it could allow an attacker to spoof trusted Internet content.

Microsoft Small Business Server 2000 and 2003, both of which include ISA Server, are also affected.

If a user could first be persuaded to visit a particular site, the attack could allow that site to serve that content instead of content from other sites the user believes he is visiting.

The bug would not allow the spoofing of an SSL (Secure Sockets Layer) certificate, and if a spoofed site attempts to use a trusted Web sites SSL certificate, the authentication will fail.

Because of these mitigating circumstances, Microsoft has termed the problem "important" as opposed to the more severe "critical rating."

Resource Library:

Click here for reviews of SSL-based VPNs.

Patches are available through links on the advisory page. It is also possible to work around the bug by setting the DNS (Domain Name System) cache size to 0, thus preventing the spoofed site from serving data from the cache, but this would have a deleterious effect on performance and defeat much of the point of running ISA Server.

This patch was the first for which Microsoft gave advance notice, in accordance with a new policy. Three business days prior to the release of such advisories, Microsoft will release information on the number of such advisories, the products they affect and their severity.

Check out eWEEK.coms for the latest security news, reviews and analysis. And for insights on security coverage around the Web, take a look at eWEEK.com Security Center Editor Larry Seltzers Weblog.



  Reader Comments: Microsoft Patches Spoofing Flaw in ISA Server
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Larry Seltzer
 


x}r8s;iW1E.B䲦lcTF((ئHIVO 7]hɗseK@&2D"?I9s4ô1f%STI]"I~hC(~0`R)_rdxBԲ|WR #Yخtj55vGl$J~ AT{j xL9u]ٜjc7h2 Xm (kvZC'Aj(CJx(Z= ? w,8$a}#$aT6^ ;s9ȹ3z$nPrN7w#205ARZ [ XdTj ӡc)u8r x08JeJ-jfMM yf_%z(sw6O( |@ɠi!ZdQ=}9e f42MYU\WkaZJGC L{hTyݙ~Ͽ EU E2G -;жD^ԢCq9'}rѽi}[r  + A6Rߙ+0Q\&*+Jx8M2A >jW`9rM7JQ߹~Q-jR;ԓ,f3} 3+i3Y:~K~1/˫NMӣN;l,/aZUU 2Z*]鬘FȏNժurq۹huo{{EZqřyN0p3 Zk! ovb M u4}GS{r&޺>:$˷cYn[3`HlDmYܾȑ\Ry+a)(7F`X@7? iP2ML9X@/@ש#AWtBm&T3o`2 4.zh-Aho*KhLru&@Sk~$M cΚb.L2o<|J{%/^(Pe!P샚_. jFէTwPH7#DD vxr!DKI88c^IRYE1\ni>U<8vwެ.Uմީ-~iKsq__[wٽuyk~jǫg",$ ꨦV+||2,Kba_)b(7Z`Lm,5,Ltͬ Y0`贎;mJ_{ϧ0gPP? M/6}@˥qj>1 @ Lna 8V83 4Cuәݰ=Wԇ9[ϩ`IO l"v|3c)м`y`27C?F{t( 5,/G`\@Z8`$8ʼ E ]qk3B7}hN5҆&QcSB]jJdN˕ ] #RR,H6'hI#r Bг,`@o!`9`P a+R .<BIg(cvn<K){TKh!+K@fsfh(4{~u}bB+|#'bXr`Y \h+|^h)lb ը6؛RPU+5tHބhd&,a戡uy=A-|' - LcF3pEql)0cypm'ȓcS2Gla}& /| `0'힮6[95mX0NL}B"+H5L6LhH,io<`sYu-yI\#UCfaMv"Wv6P0ʇSMrJ9;ewQ \Лv39n(!+hWY 2cdRUyrt+[Y3nR>ra*{j +)dj~#J͸^`3h{q#%IAg =e河xOtXKnuo?Iյ݋pz1(KúJJ'/Hoh m_EڠeeLGyK-# IPצ(X+ezdxy62&CInPy{8`O>7l{`(`RTȅj#SV+a5sV@@@7h ,قrir6<:X\O{D \r g cp:h>JeHǝ8~L&[BUjJb35-F   _ǂK e*8t55{qq?[ZN®tєgүhM擫vpv=9Je!6#{jiWHLZ`!?r(1Iҏ5 &^PGe d^s`M[`R9#Dzl lF9 CQ>-LM{ ipbZERiI~~i~R`T;(l]|?|uVV0\}єa˘34|q֓-*IRP$x!5 dj>Ǿ$o+:|#HE~HQ7Ϗ9(gd%d)>gHZ+k՘P+Rjf~~{ ߥ:8pF#}y6w'~~L4/|)-w~m^8R39X>vqZEL[vO`cV av5 1;=W r y-0yRm`n0LკW'K.(۩k=ibGHoe]rC XQVaOwT)ӱ%Jt( yB\+b_awg* :@{!G:0=,(Y)Yന^v/iYϕS)%V$tu| `_snM<=K$*X]Fj}u¾_ZN+^> (L40Ȑ%|=GlTlkwTk/6h)XS!RW dĞeeK7ExjC鋨%[ȓw&J ĴR.[C5^-(93V]-M:f2/cXlU-'0}3hSElpg=H]Ӟyu}lO>ݽ~O#eIN:#Mr&kA}kPgw(*Kq3`9S"象mB|u_+'&'lWm"z'"#ə^k ̼~ZsiӳP.T*E0=k@" a]f&k꾬*eƬR/(QU-q'F.҄^ߵKSbvvLʲH'٭X+pe l&SRZ/ւ `PS*z/`"@(]cO3(~ (zC9+u{~>R\S,.=ImXJP?ETAtEUTn?mVPVW`Zd&\%\{3i0(Q󹋗~fD}R/)3nQ/ ~egmS?PG te[,${}ђ:Om~t1} }L@IP 4#7?$ikCOju.>IWm}<-odD4|wէ΅q{OE[J:^9$Q!5:.XF}9>k7M1k0fhRdA fF<$]wFMTo!PR2.ݫV3 U/Vs>V\zA_kɾ,<9AϐaZ4ΊG0 Bf/3b!|F<A(5 +JG:˳vZgp=6" BtX 1tJ1 _RJMQ=#ijV{LG$G)ޔ(ί0[JӷoHWY;GD{_q-5sz4~&\1Z9nܐ!g4r㿜YA$ !rz en1tAZ޴So4 jGYkNEm펧{6-~=prr(SJ$Q6'in&.j5Kbă)s.RJ<:CTդ g껰Ϋ؁OK!\8a`609+R~=D_vwj̣{cy~`ѴGNxĆ#^@)s^XL2k=7x'gY.t0wod#γdfcT1;.`Y=w6=OHE{lhG(V=w%hh*5fxe>x?HАݛc-p7&tGv{Fؓ_ǻc$Ǯ~'ݻ~Zؖ[q*A=wK?fdc: M"I^QԼڭUdE)I=ۉNG'S~`qx-񌆁ọW)[Uj26%t9'| #Yf2ݼ=ͯNZ2EKHQ\:&bC= 6g'f6%u2;#"rS: MrhTszcgfOQjCm6^ R/w4wU?yS [,,:,̰SA;-JVMcf^*ndg3ڿ4c:&2$Ŷā0%(+a>Xfj1zR[EyJ$+q_LIluh&R:%KR$]q#q/k{܂K5Dᩔ(ԙZL:/O,pɝ`NE*-ܬNG0ϒ'һY,4 <,f0 !}Y Lݼk̋ʄ #ĬZF\-'T-7ԗRcѡhXYdnޠx?8ȮH-F4߀}#v.cE/jPwOrYQ<ȓwyl)Taz2#%67MC_Y$ x9S*]Z3^` ڶ_ ij#z @,Y*k͞IK!lŮ] k 5ގ0ݥ K9IRii󅑩VBFB&!l%&ʤ&Rܘ& ,nʕWO Sny0< FcW^Exb1 |ƓU₪&UyS.nbv P ̊ΩfDY{@H! fb|/kll\uK^Z8VɜkD/|?d dr?d^|W||.u I_0^QL\>9|9c_gjDo8>/pnIlR'wӃɷѹ93fa΃E1}!}cBD6Zk6⫛8`T J,VMMۿssI;vhɫ9os9.t, mxvA&'o+oH^L+ِJ>CL@`;#1ԯ0$ F)AGZ;N_}u\t_1TŹ9bФ֦W!S492!0A v=H-7Ąu+2eʈ0kՌ]-u"hۓZTJufL0,-B,j7$2@@% <:HGoޚx!^NƋAlȘWߌL4CMj)R;YӘeFL{7}r' *~,-535 scUz07[T٤~2oF ow&TI*f g~#k4"k9+Hz+y wwwwwwwwT߼2i` u[WlDJ QDw|j,ėk~pRʹ ËBG'YmfWb@C_D-_svϘX؊XTûn+S;yT7&&ѼzFAP$E(KB%fXEnM֯|mf$MEn%_< KX'8* =f=M9ڛش7ޤĢRq_F,A9_ J8D#9'!o3^8]G{{)O(`~DUxZ μdxbFվ94QM4 y(t3}d@[wH*EM,Ϯ$&"'mlRkw-d:4ݷt#$v\ģ{68sΠZ~T\{v VIO6zƧ{Y֟r;ԷD%R| ǿ2'5W3czSM-wP!Jif5NM@d6S7{M_Ps&`ZlV,(U=~\UQ׿f=:uRY,ffYތyﳉc&dfph֒_fXy*l%I"q0M_),┉fneOx%3_H4p D&Xȓw5p {IGsƻ5Y|Oߪ/Un/ I3!7^Hc2@='@amIY06Yl /Lqìf0u!ۿP}d˖1Vނs.a2QQ Q?Dw̩xf?¤t'O|oFD2~'B p4Oo][q'H|o!DhTLґu o`< z ̥7b?= /N8 roEVIz# ,@Eꊍ\DQKB p7p CsF.ڷv߾ꡇU Cy|P_{ Xsv#7}6'&|ũc 'lI<R+; JAy–s\vf+Z؟ 0nh"75|$rkqC9Ҕu?立^aPČHE t03*!F2*mG&^I79i[ 45`BRA~9M6")aFctkn،b=r6c^tet;LQZj*!b3wȣ4ϓ } $Z`K]N*@`*!7{)%n67p>9/{YxdJ Lma`t.Pu>Mà0]_:h5Ln 0YKw`C'[BaO g>򽉡{0u3$ s!aZ;<5QB<䱤Pl <'/M MO_zwb꾌@h),f,])B9|Ե>|+R0cE)'vx2nV?.4W )WTx s##vFCdS8tsڟh,\yyytH\ۤw};\; r>y(lkEQQ{sѾ\spaAlL[d_T ΒQ9h28SѢksYx9% Yw8nz,;'(%lFyїU1oLlH=VԊkm8'j9ٙ%K#C|'9mzfP [+!XU9iz67anq4ħYO\#4[EYFg(Q+Q~Wˏ͌.w3ʑ[@V;ʏח}N2 )z}i'8/rN+g:NF?rϽ/Pe}?ˀce99?ς=Ϡ9<>yyy(_@MF)f Q~0{s!?0~ׅw3?]/ r qeW?W{^}~X_~ u_7P~Udwɠ-ff--m%:Iʘ!gK\8r es ~)W@_d_y*%IF>gJ3VڍnV`{AJ1{_/C+@/q>sym%R+ ]Q%=Lk[M2n@Kȣ_xi +{ z@J s hxVydR bye?V,$=)>w槤Ixϕմ] &JRo-cENZ%.~QJxdB$dc3,FDkaȾ7'%Y#ܻ Gz‰nQ2 Lg~<'ԊRnOArtr m>v#ySa^/ydֺWWVF+p'k͠6K搧H>Y݉;yx߅ oBg=j{4oqa CO3mo|J܌Ӄ:XW4`.g6{hϦ"di󠮰iPͩȪ9(H7Ejo2x sG)螡Z( MW 7\xɜď;cvU@3ebIPTTR;_M #G1QTY)ȅ[V R`" *s>P`24UJ` Pz!J1 4c֭dKb(p EУchH˘V͛YȌNE5//{_۱ B R1 1@eN*q0*r6d%Q<83`>&\ʠaCao/XbKZ;c`\;S35,Y&58W!=7cUݣQB~S-S7rɌB΄[4пs%(u5I 50=_u–'"F;B:Nsק`ػ lg%X5RGc(luy9o"+/z҉F3FoPG1x_%05:%xlӍIfr{^f$W"nrǖ33$ \ؓZHP q[8 5 g[=ǙPĚwh޴_ V_dvO~5B^pka#,ޯ |t,C巧cs%^Πo'bO_s6eEQ&PLŽ)Jqk+yHRݠ_*99"Ź oPm b/<%7^u~G{ ,CP6N>LcUA>X의feMc(ŬBCd=)OoW-[$@5E`7 n=ձ]w `7@#>Ƌrd{Kogy1cHPWFWݜ햏 /Xo| 8lO.dzl}π!XsCQ%ɷ` =͛5}^nT "+1&G_2"L) ԢLSg(\*],1Ał?vLwV* G8"U];66sP/>¼yOW=Q'nalhd%K^FH§%!Ҷ\)Vbʥ.Sܟ=BaқK7"],{ QFbf@q얢U.nDSwϏp`2uz/['8KIJ epCikZK 0Dq] XâȖWqTR:!; /D?8-`4bOP1,sQf7}MaN*)Asa#"- sK29),cǝ*4vlw:n]^5FElT$bB=Ay$O>kA@`V\3zf7Z.ۘMhc{pfi#fSSG3 τ ixv4<1TF_E@G7dyUĔfٵ\RKnrmmck )60MÄrM"5poq=yezИJ pK8 g!0X^ZpTT/>%h2b5_yf\B1,#ŠN|C嬽t1NʓE_:iwξJrC=C= aFk;O(QF2t?XQ|=^`ghi/=jtսhIaE eiNђuWvH]6[ŧdEg_0m\}!l4Gn_M4ZQwV㛼VtƢI:6pz_(Պ]jv[W셳Qbmئd i29J{) qŭ˕46!V07Nw6̈́ В^&Ůvbec?T)