Web Based SSL VPN Client Repurposing Attacks
Source: Intrepidus Group
Web based SSL VPNs (Secure Sockets Layer Virtual Private Networks) are popular methods for enterprise remote access. They are promoted as more cost effective than traditional IPSEC VPN devices, with a major value-add being the web based deployment of client side ActiveX components. Due to the nature of the web and ActiveX, these client side components are primed for abuse by malicious web sites. This paper is intended to describe some of the unseen risks these deployments face so that customers can better evaluate VPN vendors.