The new site is up and running.
Please CLICK HERE to go to new site.

HomeHomeFAQRegisterLog in

ActiveSync still a security loophole . . . View previous topic View next topic Go down
Author Message
Super Moderator


Age : Number of posts : 3476My Device : HTC TP - Q9cCarrier : VZWLocation : SE PA - USA

View user profile

Thu Oct 02, 2008 5:46 am

ActiveSync still a security loophole despite Microsoft cutting features
October 02, 2008 [General] | By Edward J. R.

Long time ago it was possible to synchronize Windows Mobile over WiFi (or over the Internet even) with a PC running ActiveSync, but Microsoft has removed this excellent feature due to security reasons. Instead of making it deactivated by default or secure, Microsoft just removed features! However it still does not help with comes to security...

Seth Fogie writes:

Exploiting Systems Through ActiveSync

I wrote a piece for InformIT examining a security loophole created by ActiveSync 4.x through which attackers can launch attacks against vulnerable systems. Due to the way ActiveSync 4.x works in conjunction with RNDIS (Remote Network Driver Interface Spec.), any time a Windows Mobile device is connected to a host PC, it will establish a full TCP/IP connection over which the rest of the syncing process is established. While good for stability, this gives an attacker full network access to the host PC. White Wolf Labs has put together a working demonstration (with video and PoC) of how this hole can be exploited - up to and including establishing a reverse-shell over RNDIS between the PC and a Windows Mobile device.
Back to top Go down
Reply to topic
ActiveSync still a security loophole . . . View previous topic View next topic Back to top
Page 1 of 1

Permissions in this forum: You cannot reply to topics in this forum
oldS.A.W. :: 



News Section


| Contact Us | F.A.Q. | Forum Rules |
Create a forum | © phpBB | Free forum support | Report an abuse | Forumotion