[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[WEB SECURITY] Testing MMx stack

From: "Gleb Paharenko" <gpaharenko@xxxxxxxxx>
Subject: [WEB SECURITY] Testing MMx stack
Date: Thu, 6 Mar 2008 11:31:47 +0200

Hi.

Is some body has experience in testing MM1,MM7,etc. interfaces of MMSC
and other MMS related infrastructure of GSM operators.

For MM1 I've found the folowing vectors to be checked:
 - web interface of MMSC
 - web interface of MMS composing and displaying though internet
oparators web-site (even though malformed mms)
 - attacks on mobile phone though specially crafted MMS

MM7 have not been researched by me yet, but it seems that all
web-services stuff could be evaluated.

I'm able to create custom MMS and send them (using NowSMS) though gprs modem.


-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Prev by Date: Re: [WEB SECURITY] Getting into the security industry
Next by Date: [WEB SECURITY] WASC meetup at RSA conference
Previous by thread: [WEB SECURITY] Getting into the security industry
Next by thread: [WEB SECURITY] WASC meetup at RSA conference
Index(es):
- Date
- Thread

Brought to you by http://www.webappsec.org
Search this site