Slashdot is powered by your submissions, so send in your scoop

 


Forgot your password?
Close
typodupeerror
×
Security

Submission + - The iPhone SMS Hack Explained

Submitted by GhostX9
GhostX9 writes: Tom's Hardware just interviewed Charlie Miller, the man behind the iPhone remote exploit hack and winner of Pwn2Own 2009. He explains the (now patched) bug in the iPhone which allowed him to remotely exploit the iPhone in detail, explaining how the string concatenation code was flawed. The most surprising thing was that the bug could be traced back to several previous generation of iPhone OS's (he stopped testing at version 2.2). He also talks about the failures of other devices such as crashing HTC's Touch by sending a SMS with "%n" in the text.
Microsoft

Submission + - Comcast Hijacking DNS w/Microsoft's Help? 2

Submitted by
Brian Olson
Brian Olson writes: "I read the article a few days ago and tested my Comcast connection for DNS hijacking and all was well. Just a little while ago I mis-typed a URL and new thing I know I'm at a Comcast search engine page. I immediately called to complain about what Comcast described as a "service" and they supposedly removed me from the list if victims. My first thought was to spam www.stophijackingmydnsqueries_comcast.com for a few days and see if that got their attention, but I'll wait to see if this "service" is actually removed.

Here's where it gets really interesting. So while capturing the traffic to get the above dns query packet, I couldn't help but lookup the response IP (208.68.139.38). I was shocked to discover that it was not a Comcast IP, since I was redirected to a Comcast search page (http://search2.comcast.com/)...but low and behold, an IP for "FAST Search & Transfer Inc." Who? Well, the organization doesn't have a webpage, nor any useful information in Google searches. Hmmmm...the only information I see is the netblock information:

RTechHandle: JHH10-ARIN
RTechName: Hutchinson, James Henry
RTechPhone: +1-781-433-8999
RTechEmail: james.hutchinson@microsoft.com

Really? Did Microsoft make some sort of backdoor deal with Comcast? I don't know...but it surely seems so to me! There's the info...maybe someone can do more with it than I."

Slashdot Top Deals

Say "twenty-three-skiddoo" to logout.

Close