CVE-2015-3726

The Telephony subsystem in Apple iOS before 8.4 allows physically proximate attackers to execute arbitrary code via a crafted 1 SIM or 2 UIM card...

CVE-2015-3726

The Telephony subsystem in Apple iOS before 8.4 allows physically proximate attackers to execute arbitrary code via a crafted 1 SIM or 2 UIM card...

CVE-2015-3726

The CVE-2015-3726 vulnerability affects the Telephony subsystem of Apple iOS prior to 8.4. It allows physically proximate attackers to execute arbitrary code through crafted SIM/UIM payloads by exploiting multiple input validation issues in parsing SIM/UIM data. The issue is specific to the Telep...

Apple iOS 8.4 and OS X 10.10.4 fix vulnerabilities at a glance-vulnerability warning-the black bar safety net

Yesterday Apple released the latest iOS 8.4 and Mac OS X 10.10.4, the new version of the system contains a large number of security patches, fixing a remote code execution vulnerability, China certificate trust policy and other security issues. iOS 8.4 bug fixes list 1, iOS 8. 4 version of the...

Apple iOS Malicious SIM Input Verification Vulnerability

Apple iOS is the latest operating system that runs on Apple's iPhone and iPod touch devices. Apple iOS parses SIM/UIM loads in the presence of input validation, allowing attackers to exploit the vulnerability to execute arbitrary code using a malicious SIM card...

Apple Patches Dozens of Flaws in iOS 8.4, OS X 10.10.4

Apple has released new versions of iOS and OS X, both of which include a significant number of security patches, several for bugs that can lead to remote code execution and other serious issues. Version 8.4 of iOS contains fixes for more than 30 security vulnerabilities, including bugs in the iOS...

Gemalto Officials Say SIM Infrastructure Not Compromised

Despite leaked documents from the NSA showing otherwise, officials at Gemalto on Wednesday said the company has found no evidence that its SIM card infrastructure was compromised several years ago by the NSA and GCHQ. The company identified a handful of what it called sophisticated attacks in the...

Gemalto: 'SIM Products Are Secure'

Gemalto officials say that while they are still in the process of investigating whether the company was compromised by the NSA and GCHQ to access the encryption keys for its SIM cards, they say they believe their products and platforms are secure. In a statement issued Monday, Gemalto officials...

NSA Stole Millions Of SIM Card Encryption Keys To Gather Private Data

Edward Snowden is back with one of the biggest revelations about the government's widespread surveillance program. The US National Security Agency NSA and British counterpart Government Communications Headquarters GCHQ hacked into the networks of the world's biggest SIM card manufacturer, accordi...

BMW security vulnerability details: the ancient Bole to identify a good horse, today there are hackers escapement BMW-vulnerability warning-the black bar safety net

ADAC whole German automobile club want to in-depth understanding of embedded mobile network modem of the car to the manufacturer to send data. C't German computer technology magazine for the ADAC introduced a security expert. The expert in-depth analysis of the BMW ConnectedDrive system the data...

Mobile Vikings: Approve topup method by sender of this method

user A has a sim and send auth request to user B user B accepted it and decide to add to shared sim own topup method user B goes to https://mobilevikings.be/en/account/easypay/auto-sms-topup/ - select shared sim card and select method in section "Choose a payment method" and submit form. User A g...

Mobile Vikings: Username and sim id enum

Look at this url GET request https://mobilevikings.be/en/sims/authorization/remove/admin/1036358/ - looks good - admin user detected https://mobilevikings.be/en/sims/authorization/remove/lloyd/1036358/ - looks good - lloyd user detected...

Sim Editor 6.6 Buffer Overflow Exploit

Sim Editor version 6.6 stack-based buffer overflow exploit. include include include define SIZE 65536 / Title: Sim Editor v6.6 Stack Based Buffer Overflow Version: 6.6 Tested on: Windows XP sp2 en, Windows 8 64-bit Date: 16-01-2015 Author: Osanda Malith Jayathissa Website:...

Sim Editor 6.6 - Local Stack Buffer Overflow

Sim Editor 6.6 - Local Stack Buffer Overflow include include include define SIZE 65536 / Title: Sim Editor v6.6 Stack Based Buffer Overflow Version: 6.6 Tested on: Windows XP sp2 en, Windows 8 64-bit Date: 16-01-2015 Author: Osanda Malith Jayathissa E-Mail: osandacatunseen.is Website:...

Sim Editor 6.6 Buffer Overflow

include include include define SIZE 65536 / Title: Sim Editor v6.6 Stack Based Buffer Overflow Version: 6.6 Tested on: Windows XP sp2 en, Windows 8 64-bit Date: 16-01-2015 Author: Osanda Malith Jayathissa E-Mail: osandacatunseen.is Website: OsandaMalith.wordpress.com / void addint count, unsigned...

Sim Editor 6.6 - Local Stack Buffer Overflow

include include include define SIZE 65536 / Title: Sim Editor v6.6 Stack Based Buffer Overflow Version: 6.6 Tested on: Windows XP sp2 en, Windows 8 64-bit Date: 16-01-2015 Author: Osanda Malith Jayathissa E-Mail: osandacatunseen.is Website: OsandaMalith.wordpress.com CVE: CVE-2015-1171 / const ch...

GSM-SIM-Utility-5.15

Exploit Title : GSM SIM Utility sms file Local SEH BoF Date : June 28, 2010 Author : chap0 www.seek-truth.net Download Link : http://download.cnet.com/GSM-SIM-Utility/3000-185084-10396246.html?tag=mncol Version : 5.15 import time sc ="d9eb9bd97424f431d2b27a31c964" "8b71308b760c8b761c8b46088b7e"...

Majority of 4G USB Modems, SIM Cards Exploitable

Researchers say 4G USB modems contain exploitable vulnerabilities through which attackers could, and researchers have, managed to gain full control of the machines to which the devices are connected. Researchers from Positive Technologies presented a briefing detailing how to compromise USB modem...

SA-CONTRIB-2014-106 - Commerce Authorize.Net SIM/DPM Payment Methods - Access Bypass

This module provides payment methods for the Drupal Commerce package to permit the use of the Authorize.Net payment gateway's SIM and DPM payment protocols. Access Bypass The module doesn't sufficiently protect the Drupal Commerce order number passed to the Authorize.Net payment gateway, allowing...

CVE-2014-2644

HP Systems Insight Manager (SIM) prior to version 7.4 on Linux/Windows is affected by CVE-2014-2644: a cross-site scripting (XSS) vulnerability allowing remote attackers to inject arbitrary scripts/HTML via unknown vectors. The CVSS v2 base score is 4.3 (I: Partial; AV:N/AC:M/Au:N). Remediation: ...