Researchers at the Leviathan Security Group have publicized an exploit that can force a VPN user to transmit unencrypted internet traffic outside of the VPN tunnel, exposing...
It is all interesting, but most core network services are jointed at the hip. If you can tamper with one service, you can usually fuck with all of them. Also, DHCP is much more than “gimmie an IP address”. It’s kinda always been a way to configure almost anything at layer 3 on a host OS.
Calling this an exploit is a bit of a stretch and why they focused on VPN bypass is kind of ‘meh’ compared to all the rest of the things you could do If you control the routing tables on a client. Hell, if you control DHCP, you control client DNS as well, so that could be fun to abuse too.
This kind of report is almost like saying ‘rm -rf’ is an exploit after you give someone root access.
Edit: This is a coffee-shop’ish type of attack. I am aware of that.
It is all interesting, but most core network services are jointed at the hip. If you can tamper with one service, you can usually fuck with all of them. Also, DHCP is much more than “gimmie an IP address”. It’s kinda always been a way to configure almost anything at layer 3 on a host OS.
Calling this an exploit is a bit of a stretch and why they focused on VPN bypass is kind of ‘meh’ compared to all the rest of the things you could do If you control the routing tables on a client. Hell, if you control DHCP, you control client DNS as well, so that could be fun to abuse too.
This kind of report is almost like saying ‘rm -rf’ is an exploit after you give someone root access.
Edit: This is a coffee-shop’ish type of attack. I am aware of that.