Closed Bug 763922 Opened 12 years ago Closed 12 years ago

SecReview: WebTelephony - Fuzzing AT Commands

Tracking

(Not tracked)

Status:

RESOLVED FIXED

People

(Reporter: curtisk, Assigned: posidron)

References

(
URL
)

Details

(Whiteboard: [completed secreview])

Curtis Koenig [:curtisk-use curtis.koenig+bzATgmail.com]]

Reporter

Description

•

12 years ago

SecReview Action Item bug Fuzzing AT Commands

Christoph Diehl [:posidron]

Assignee

Comment 1

•

12 years ago

I am done with fuzzing and have tested the following unsolicited AT commands: CRING, CCWA, CTVZ, CDS, CREG, CGREG, CGEV, CMT The attack vector is in my opinion limited since all of those AT commands can not be manipulated remotely except CMT of which is taken care of in another bug 741876. The fuzzing module has been pushed to the repository and is extendable for additional commands.

Status: NEW → RESOLVED

Closed: 12 years ago

Resolution: --- → FIXED

Whiteboard: [action item] → [completed secreview]

You need to log in before you can comment on or make changes to this bug.

Bugzilla

SecReview: WebTelephony - Fuzzing AT Commands

Categories

(mozilla.org :: Security Assurance, task)

Tracking

(Not tracked)

People

(Reporter: curtisk, Assigned: posidron)

References

(
URL
)

Details

(Whiteboard: [completed secreview])

Crash Data

Security

(public)

User Story

Description

Comment 1