iPhone Nmap Results
By Daniel Miessler on July 2nd, 2007: Tagged as Musings | Security | iPhone
I got bored and scanned my iPhone with Nmap.
Click for larger image…Hmm…a single open TCP port (62078) with tcpwrappers, interesting OS detection results, and a scary TCP sequence prediction finding. More analysis to follow…
--
If you can calculate the next TCP sequence number without a calculator (0×66 difference), it IS a joke. It means someone implemented the specs without considering the security implications.
– Arik
Comment by Arik — 7/3/2007 @ 2:58 am
Not enough randomness! (I don’t think the slow processor is to blame for all of it though)
Comment by ghost16825 — 7/3/2007 @ 6:18 am
Maybe they used old MacOS source as a base for the OS? http://lcamtuf.coredump.cx/oldtcp/tcpseq.html#macos (Not the improvements in the newer version of the paper - http://lcamtuf.coredump.cx/newtcp/#macos )
Comment by ghost16825 — 7/3/2007 @ 6:24 am
Correction: *note the improvements
Comment by ghost16825 — 7/3/2007 @ 6:25 am
[...] iPhone Nmap Results iPhone Root Password Cracked iPhone SERIAL HACKED, FULL INTERACTIVE SHELL IC Friday: Apple iPhone’s CPU Posted by dryad Filed in Links, News [...]
Pingback by Mais iPhone (afinal, esta na moda): default root passwords, tcp sequence “randomization”… « Oscaraleeto — 7/7/2007 @ 10:14 am
[...] interesting OS detection results, and a scary TCP sequence prediction finding source: iPhone Nmap Results, dmiessler.com | grep understanding [...]
Pingback by iPhone Nmap Results — Anti spam and Mail Cleaning Software — 8/23/2007 @ 1:25 pm
i foundf an iphone but it has a pass code on it and i was wondering if you might know if there is a default password to open it??? thank you for your time
Comment by Matt — 9/22/2007 @ 3:58 pm
[...] Previous iPhone Nmap Results | dmiessler.com ] [ An Nmap Primer | dmiessler.com ] [ Nmap | insecure.org ] [ The Apple iPhone | apple.com [...]
Pingback by Scanning iPhone 2.0 Software with Nmap — 7/28/2008 @ 6:34 am