November 16, 2001

Win2k/XP terminal services IP spoofing

Author: JT Smith

Net-Security: "Terminal services has a bug that allows an attacker to cause both the Terminal Services
Manager and the Event Log to record a spoofed IP address for Terminal Services
connections. Although the operating system itself is not fooled, if an administrator is
not aware of the issue he would not have reason to distrust the IP address reported by
Terminal Services."


  • Linux
Click Here!