[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Simple] <note> in IMDN

To: "Dean Willis" <dean.willis at softarmor.com>
Subject: Re: [Simple] <note> in IMDN
From: "Hisham Khartabil" <hisham.khartabil at gmail.com>
Date: Wed, 21 May 2008 09:22:04 +1000
Cc: simple at ietf.org
Delivered-to: ietfarch-simple-web-archive at core3.amsl.com
Delivered-to: simple at core3.amsl.com
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; bh=XF6e/Vlb95+lyP/d8XNaU7+Z7wN2mejBQ1jxDmLGMUI=; b=UCgC2A2KdiO8Aid6Ze29to3iC/x0MrvaUcL3HOM5duc60AvcX1DVLcFYxSmjLIVRObVHDWpetxdmDvGrtiDFC9GpBQ6X0STz3DBtO9NIMlaxIYWL+XSaLF33XpmI1YAwlIYQU6eJPxPf5mnV8yDylxlCSg13I0Vqw2OglK5tC+Y=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=i6/z/UBmtXq+ykomiUSK+rav0quAwm2IrACN2+wpXx7a/JkWCJCtM5rBLvMrBB8ZL0PD7cS1vR/n6QkljmuYXf0Jvsel+SvA0arcI+h62BP6LChdocbkpBlg7OAJYVy8Jyg3ZJ5w4YadgCRrBvkzaABKTIjXxKNvNXTL+HgVdkg=
In-reply-to: <3092F25A-A072-4952-9C44-8C639B1925E2@softarmor.com>
List-archive: <http://www.ietf.org/pipermail/simple>
List-help: <mailto:simple-request@ietf.org?subject=help>
List-id: SIP for Instant Messaging and Presence Leveraging Extensions <simple.ietf.org>
List-post: <mailto:simple@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/simple>, <mailto:simple-request@ietf.org?subject=unsubscribe>
References: <1660532724-1210725948-cardhu_decombobulator_blackberry.rim.net-784864713-@bxe033.bisx.prod.on.blackberry> <66cd252f0805131939t6569dab7r45d8ced20471a157@mail.gmail.com> <77384F67-E82C-483C-B555-665BFAF02D4E@standardstrack.com> <66cd252f0805132138m23aa3f42kf01ce0dcb7c42181@mail.gmail.com> <3092F25A-A072-4952-9C44-8C639B1925E2@softarmor.com>
Sender: simple-bounces at ietf.org

On 21/05/2008, Dean Willis <dean.willis at softarmor.com> wrote:
>
> On May 13, 2008, at 11:38 PM, Hisham Khartabil wrote:
>
> > Can you explain how it is an attack vector?
> >
>
>
> Unconstrained rich content is one of the most easily exploited attack
> vectors.

How is this different from every other header or part of an XML body
in SIP, MSRP, IMPP or any other protocol that allows text to be
entered in a field? Why is this particular <note> giving people grief?

>
> Buffer overrun attacks as well as all of the typical MIME compound-component
> attacks are likely. For example, the common JPEG vulnerabilities might be
> exploitable:
>
> http://www.news.com/Image-virus-spreads-via-chat/2100-7349_3-5390463.html
>
>
> Or the content-execution weakness that caused the Macintosh Safari browse to
> be most easily exploited in recent hacking contests:
>
> http://www.engadget.com/2007/07/23/safari-exploit-gives-hackers-full-control-of-your-iphone/
>
>
> There have also been exploits against QuickTime, Flash, and most other
> plugin components from time to time.
>
> --
> Dean
>
_______________________________________________
Simple mailing list
Simple at ietf.org
https://www.ietf.org/mailman/listinfo/simple

Follow-Ups:
- Re: [Simple] <note> in IMDN
  - From: Eric Burger

References:
- Re: [Simple] <note> in IMDN
  - From: eburger
- Re: [Simple] <note> in IMDN
  - From: Hisham Khartabil
- Re: [Simple] <note> in IMDN
  - From: Eric Burger
- Re: [Simple] <note> in IMDN
  - From: Hisham Khartabil
- Re: [Simple] <note> in IMDN
  - From: Dean Willis

Prev by Date: Re: [Simple] <note> in IMDN
Next by Date: [Simple] Draft: Alternative connection model for MSRP (draft-blau-msrp-acm-00.txt)
Previous by thread: Re: [Simple] <note> in IMDN
Next by thread: Re: [Simple] <note> in IMDN
Index(es):
- Date
- Thread