AppSec Blog: Daily Archives: Jan 14, 2011

What's in Your iOS Image Cache?

Backgrounding and Snapshots In iOS when an application moves to the background the system takes a screen shot of the application's main window. This screen shot is used to animate transitions when the app is reopened. For example, pressing the home button while using the logon screen of the Chase App results in the following … Continue reading What's in Your iOS Image Cache?


Spot the Vuln - Sleep - SMTP Command Injection

Details Affected Software: PunBB Fixed in Version: 1.3.2 Issue Type: SMTP Command Injection Original Code: Found Here Description Interesting bug here. In 2008, Stefan Esser reported a bug to the PunBB team which described a SMTP command injection vulnerability. If we look at the code below, we see that PunBB opens a socket connection to … Continue reading Spot the Vuln - Sleep - SMTP Command Injection