It was a pretty nice opportunity for us to explain some of our tricks related to client-side attacks in a web environment. For example, we talked about the vulnerabilities we found in 2010, that could allow you to either hack a remote web browser, or to counter-attack, etc.
For us, it was really interesting to meet some of the people from RIM who worked on the vulnerability we found, after months of discussions through emails. Internet is great, but meeting people in real life remains the best way to exchange... Luckily, we also got someone from Apple in our room.
- CVE-2010-1752 - Apple: Buffer overflow in CFNetwork Library
- CVE-2010-2599 - RIM: Partial DoS in the BlackBerry browser application
- BlackBerry [ http://www.blackberry.com/btsc/KB24841 ]
Thanks again to BlackHat family for this opportunity, in this tremendous city...