[prev in list] [next in list] [prev in thread] [next in thread]
List: full-disclosure
Subject: Re: [Full-disclosure] Hacking into a Windows CE PDA?
From: "James Matthews" <nytrokiss () gmail ! com>
Date: 2007-06-28 17:28:37
Message-ID: 8a6b8e350706281028p7226f0eeh3231cd3233df409f () mail ! gmail ! com
[Download RAW message or body]
[Attachment #2 (multipart/alternative)]
Yes Shmoo con was a great talk! There should be some stuff online
On 6/28/07, matthew wollenweber <mwollenweber@gmail.com> wrote:
>
> It's pretty easy to attack Windows Mobile. There was a good presentation
> at Shmoocon 07 regarding that topic. If you can grab the slides it would be
> a good starting point.
>
> If you get physical access the game is over. Generally the things mount
> automagically as a hard drive. Even if they don't 9 times out of 10 the
> password is only a 4 digit numeric deal.
>
> If you really want to exploit the thing Ida supports Windows CE files.
> Generally the programs are very badly written so if you start fuzzing you'll
> find something quickly. They're a bit of overhead to all that. You need the
> SDK, the virtual Windows mobile device, and a newer version of Ida. However,
> it's been my experience that that most Mobile apps crash on their own. So, a
> couple minutes fuzzing is generally all you need.
>
>
> On 6/28/07, rx8volution <rx8volution@ishackingyou.com> wrote:
> >
> > Hello folks,
> >
> > I have the occasion of needing to get an opinion on how 'difficult'
> > it would be to hack into (bypassing the 10-guess password limit, and
> > assuming complex passwords) a Windows 2003 Mobile Edition PDA.
> >
> > Thoughts?
> >
> > Thanks. //RX8volution.
> >
> > _______________________________________________
> > Full-Disclosure - We believe in it.
> > Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> > Hosted and sponsored by Secunia - http://secunia.com/
> >
>
>
>
> --
> Matthew Wollenweber
> mwollenweber@gmail.com | mjw@cyberwart.com
> www.cyberwart.com
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/
>
--
http://www.goldwatches.com/watches.asp?Brand=14
http://www.jewelerslounge.com
[Attachment #5 (text/html)]
Yes Shmoo con was a great talk! There should be some stuff online<br><br><div><span \
class="gmail_quote">On 6/28/07, <b class="gmail_sendername">matthew wollenweber</b> <<a \
href="mailto:mwollenweber@gmail.com">mwollenweber@gmail.com </a>> wrote:</span><blockquote \
class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt \
0.8ex; padding-left: 1ex;">It's pretty easy to attack Windows Mobile. There was a good \
presentation at Shmoocon 07 regarding that topic. If you can grab the slides it would be a good \
starting point. <br><br>If you get physical access the game is over. Generally the things \
mount automagically as a hard drive. Even if they don't 9 times out of 10 the password is \
only a 4 digit numeric deal. <br><br>If you really want to exploit the thing Ida supports \
Windows CE files. Generally the programs are very badly written so if you start fuzzing \
you'll find something quickly. They're a bit of overhead to all that. You need the SDK, \
the virtual Windows mobile device, and a newer version of Ida. However, it's been my \
experience that that most Mobile apps crash on their own. So, a couple minutes fuzzing is \
generally all you need. <div><span class="e" id="q_11372ffc3cfcb65c_1"><br><br><br><div><span \
class="gmail_quote">On 6/28/07, <b class="gmail_sendername">rx8volution</b> <<a \
href="mailto:rx8volution@ishackingyou.com" target="_blank" onclick="return \
top.js.OpenExtLink(window,event,this)"> rx8volution@ishackingyou.com</a>> \
wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); \
margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"> Hello folks,<br><br> I \
have the occasion of needing to get an opinion on how 'difficult'<br>it would be to \
hack into (bypassing the 10-guess password limit, and<br>assuming complex passwords) a Windows \
2003 Mobile Edition PDA. \
<br><br> Thoughts?<br><br>Thanks. //RX8volution.<br><br>_______________________________________________<br>Full-Disclosure \
- We believe in it.<br>Charter: <a href="http://lists.grok.org.uk/full-disclosure-charter.html" \
target="_blank" onclick="return top.js.OpenExtLink(window,event,this)">
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - \
<a href="http://secunia.com/" target="_blank" onclick="return \
top.js.OpenExtLink(window,event,this)">http://secunia.com/</a><br> </blockquote></div><br><br \
clear="all"><br></span></div><span class="sg">-- <br>Matthew Wollenweber <br><a \
href="mailto:mwollenweber@gmail.com" target="_blank" onclick="return \
top.js.OpenExtLink(window,event,this)">mwollenweber@gmail.com</a> | <a \
href="mailto:mjw@cyberwart.com" target="_blank" onclick="return \
top.js.OpenExtLink(window,event,this)"> mjw@cyberwart.com</a><br><a \
href="http://www.cyberwart.com" target="_blank" onclick="return \
top.js.OpenExtLink(window,event,this)">www.cyberwart.com</a> \
</span><br>_______________________________________________<br>Full-Disclosure - We believe in \
it.<br>Charter: <a onclick="return top.js.OpenExtLink(window,event,this)" \
href="http://lists.grok.org.uk/full-disclosure-charter.html" target="_blank"> \
http://lists.grok.org.uk/full-disclosure-charter.html</a><br>Hosted and sponsored by Secunia - \
<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://secunia.com/" \
target="_blank">http://secunia.com/</a><br> </blockquote></div><br><br clear="all"><br>-- \
<br><a href="http://www.goldwatches.com/watches.asp?Brand=14">http://www.goldwatches.com/watches.asp?Brand=14</a><br><a \
href="http://www.jewelerslounge.com">http://www.jewelerslounge.com </a>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic