On 7 Aug 2008 18:55:06 -0000, 0xjbrown41@xxxxxxxxx <0xjbrown41@xxxxxxxxx> wrote: * establishing of arbitrary phone calls From RFC 3966 (http://www.faqs.org/rfcs/rfc3966.html):
...
So, if you are referring to the callto: security risk on most all mobile browsers, they already know.
Although your point is completely valid, we make use of some other technique to establish arbitrary phone calls. Best Regards, Adam Gowdiak ------------------------------------- Security Explorations http://www.security-explorations.com -------------------------------------