{"id":1093,"date":"2010-02-23T19:09:13","date_gmt":"2010-02-23T18:09:13","guid":{"rendered":"http:\/\/www.mitternachtshacking.de\/blog\/1093-one-exploit-should-never-ruin-your-day-but-it-often-does"},"modified":"2025-04-05T23:32:55","modified_gmt":"2025-04-05T21:32:55","slug":"one-exploit-should-never-ruin-your-day-but-it-often-does","status":"publish","type":"post","link":"https:\/\/www.mitternachtshacking.de\/blog\/1093-one-exploit-should-never-ruin-your-day-but-it-often-does","title":{"rendered":"One exploit should never ruin your day &#8230; but it often does"},"content":{"rendered":"<p>Eben gelesen:<\/p>\n<ul>&#8222;Isn&#8217;t that why we build DMZ networks with firewalls in front and behind them? The point of doing that is so that it requires more than one server-side exploit to get into your organization. Thanks to rich Internet client applications, it now only requires one client-side exploit to get into your organization.&#8220;<\/ul>\n<p>Die Bedrohungssituation hat sich f\u00fcr viele Firmen fast unbemerkt verschoben. Die Angriffe richten sich seltener gegen ihre Web-, Mail- und DNS-Server (obwohl Webapplikationen immer noch gerne kompromittiert werden) und statt dessen verst\u00e4rkt gegen Clients, die im Internet surfen. Ein Client-Exploit im Browser eines Benutzers der mit lokalen Administratorrechten surft gen\u00fcgt, um die Sicherheit eines kompletten Unternehmens zu gef\u00e4hrden.<\/p>\n<p>(von <a href=\"http:\/\/trailofbits.com\/2010\/01\/24\/one-exploit-should-not-ruin-your-day\/\">Dino A. Dai Zovi<\/a>)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Eben gelesen: &#8222;Isn&#8217;t that why we build DMZ networks with firewalls in front and behind them? The point of doing that is so that it requires more than one server-side exploit to get into your organization. Thanks to rich Internet client applications, it now only requires one client-side exploit to get into your organization.&#8220; Die [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[8,6],"tags":[],"_links":{"self":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/posts\/1093"}],"collection":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/comments?post=1093"}],"version-history":[{"count":0,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/posts\/1093\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/media?parent=1093"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/categories?post=1093"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.mitternachtshacking.de\/blog\/wp-json\/wp\/v2\/tags?post=1093"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}