This whitepaper details how a common mechanism employed by multiple Internet filtering and firewall vendors can be leveraged to gain local administrator access to domain clients, followed by domain wide administrator access given a set of conditions. Download: Whitepaper (PDF)Whitepaper … Continue reading →

The document is split into two sections. The first section covers the principals of the technique and the second is an attack case study against a commercial application.

Continue reading →