MobileRead Forums - View Single Post

kovidgoyal · 04-14-2014, 02:43 AM

A client side vulnerability can be exploited in two ways:

1) If the client connects to a malicious server

2) If a malicious party (Eve) can hijack the internet connection the client uses to perform a Man-in-the-middle attack. Doing that means that Eve can redirect http requests the client makes to a malicious server, and thereby scan the memory space of the client. Most http clients silently follow redirects with no user interaction.

To summarize:

1) Only matters if you connect to a bad server

2) Only matters if you believe someone can intercept your internet connection. This is not something an ordinary hacker typically has the resources for, but would be fairly easy for a state actor like the NSA. And of course if you are using a public WiFi network or the like, then pretty much any script kiddie can hijack your network connection.

04-14-2014, 02:43 AM	#41
kovidgoyal creator of calibre Posts: 45,455 Karma: 27757438 Join Date: Oct 2006 Location: Mumbai, India Device: Various	A client side vulnerability can be exploited in two ways: 1) If the client connects to a malicious server 2) If a malicious party (Eve) can hijack the internet connection the client uses to perform a Man-in-the-middle attack. Doing that means that Eve can redirect http requests the client makes to a malicious server, and thereby scan the memory space of the client. Most http clients silently follow redirects with no user interaction. To summarize: 1) Only matters if you connect to a bad server 2) Only matters if you believe someone can intercept your internet connection. This is not something an ordinary hacker typically has the resources for, but would be fairly easy for a state actor like the NSA. And of course if you are using a public WiFi network or the like, then pretty much any script kiddie can hijack your network connection.