Exploiting systems through ActiveSync
ActiveSync is the core piece of software that allows Windows Mobile users to pass information between their phone/PDA and their Windows based PCs. The software has been around for numerous years and has evolved slowly during this time to address user and security issues. In this update we are going to take a look at the latest version of ActiveSync and demonstrate how one of the core pieces of its technology can be exploited by an authenticated user to inject attacks into a target PC via an attached Windows Mobile device.
[ Read more ]