(In)Security

Windows Phone 7: Remote Crash

Few days ago i was working with windows phone media streaming and i’ve produced a file wmv (Windows Media Video) that crash the phone when opened in the browser’s player.

I don’t know how to debug native apps so i can’t localize where the bug is. I put the file here for further analysis.

Rar MD5 Hash: b2ca3a13354b2349514782443d23211d

wp7_remote_kill

When Reversing meet SQL Injection

It’s been a while since i wrote my last thread, life goes fast and the time is always less than before. Anyway lately i found an interesting target that push me up to write few lines about this case.  Someone i knew in a forum has posted a thread regarding a software (an Epson  print cartridges resetter) that use a server validation to work, nothing special but i had some free time and i start working on it.

(more…)

Cam4: Persistent XSS Aka Worm

A friend of mine has told me about this website so I take a look at it and i was impressed to see thousands of free live webcam with any sorts of sex perversions (sounds like a piece of paradise or hell depends from the points of view). Therefore i start thinking about security and, after 10 minutes, i found a critical flaw in the user profile.

 

(more…)