Stanislas Quastana's blog on TechNet

Windows Server, Windows Client, Cloud Computing, DirectAccess, sécurité des Systèmes d Information

Blogs

Cisco Password Encryption reversed

  • Comments 1
  • Likes

The Cisco VPN Client uses weak encryption to store user and group passwords in your local profile file.

HAL 9000 coded a little tool to reveal the saved passwords from a given profile file.
The Cisco Password Revealer along with the source code can be downloaded here.

The main problem of the method used to encrypt the passords is, that the whole procedure is deterministically and no user input is used. This effectively means that the encryption keys the Cisco Client calculates can also be calculated by any other program whensoever this programm knows the algorithm. This algorithm was now reversed.

More information : http://evilscientists.de/blog/?page_id=343

Et après ça, plus aucune raison de passer à une solution VPN avec ISA 2004 et des Smartcards :-)

Comments
  • Je viens de tester avec un client cisco vpn.
    Hélas, ce petit outil marche très bien.

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment