Published: 06/05/2024 Updated: 08/05/2024

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based security solutions that rely on routes to redirect traffic can be forced to leak traffic over the physical interface. An attacker on the same local network can read, disrupt, or possibly modify network traffic that was expected to be protected by the VPN.

CVE-2024-3661 Impact of TunnelVision Vulnerability ...

News API is a simple tool for scraping news data. It returns the news title, description, and more.. This is a .NET API Client for the News API.

News API News API is a simple tool for scraping news data It returns the news title, description, and more This is a NET Wrapper for the News API Installation Using the NET CLI: dotnet add package APIVerveAPINews Using the Package Manager: nuget install APIVerveAPINews Using the Package

A network technique that decloaks a VPN users traffic on a local network without disconnecting them from a VPN.

TunnelVision: Decloaking Routing-Based VPNs CVE-2024-3661 TunnelVision is a local network VPN leaking technique that allows an attacker to read, drop, and sometimes modify VPN traffic from a targets on the local network This technique does not activate kill-switches and does not have a full fix for every major operating system We are using the built-in and widely supported fe

News API is a simple tool for scraping news data. It returns the news title, description, and more.

News API News API is a simple tool for scraping news data It returns the news title, description, and more This is a Javascript Wrapper for the News API Installation npm install @apiverve/news --save Configuration Before using the news API client, you have to setup your account and obtain your API Key You can get it by signing up a

New attack leaks VPN traffic using rogue DHCP servers

BleepingComputer • Bill Toulas • 07 May 2024

New attack leaks VPN traffic using rogue DHCP servers By Bill Toulas May 7, 2024 02:46 PM 0 A new attack dubbed "TunnelVision" can route traffic outside a VPN's encryption tunnel, allowing attackers to snoop on unencrypted traffic while maintaining the appearance of a secure VPN connection. The method, described in detail in a report by Leviathan Security, relies on the abuse of Dynamic Host Configuration Protocol's (DHCP) option 121, which permits the configuration of classless static routes on...

https://datatracker.ietf.org/doc/html/rfc2131#section-7 https://datatracker.ietf.org/doc/html/rfc3442#section-7 https://tunnelvisionbug.com/https://www.leviathansecurity.com/research/tunnelvision https://news.ycombinator.com/item?id=40279632 https://arstechnica.com/security/2024/05/novel-attack-against-virtually-all-vpn-apps-neuters-their-entire-purpose/https://krebsonsecurity.com/2024/05/why-your-vpn-may-not-be-as-secure-as-it-claims/https://issuetracker.google.com/issues/263721377 https://mullvad.net/en/blog/evaluating-the-impact-of-tunnelvision https://www.zscaler.com/blogs/security-research/cve-2024-3661-k-tunnelvision-exposes-vpn-bypass-vulnerability https://lowendtalk.com/discussion/188857/a-rogue-dhcp-server-within-your-network-can-and-will-hijack-your-vpn-traffic https://news.ycombinator.com/item?id=40284111 https://www.agwa.name/blog/post/hardening_openvpn_for_def_con https://www.theregister.com/2024/05/07/vpn_tunnelvision_dhcp/https://nvd.nist.gov https://github.com/apiverve/news.NET-API https://www.theregister.co.uk/2024/05/07/vpn_tunnelvision_dhcp/https://security.paloaltonetworks.com/CVE-2024-3661

CVE-2024-3661

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

Recent Articles

References

Vulmon Search

About

Products

Connect