<<< Date Index >>>     <<< Thread Index >>>

re: [SE-2008-01] J2ME Security Vulnerabilities 2008




On 7 Aug 2008 18:55:06 -0000, 0xjbrown41@xxxxxxxxx <0xjbrown41@xxxxxxxxx> wrote:
* establishing of arbitrary phone calls

From RFC 3966 (http://www.faqs.org/rfcs/rfc3966.html):
...
So, if you are referring to the callto: security risk on most all mobile 
browsers, they already know.

Although your point is completely valid, we make use of some other
technique to establish arbitrary phone calls.

Best Regards,
Adam Gowdiak
-------------------------------------
Security Explorations
http://www.security-explorations.com
-------------------------------------