Microsoft
Here are some of the key reasons why you would want to run Unified Access Gateway with DirectAccess.
Google patches DoS vulnerabilities in Android
Flaws could have allowed attackers to remotely reboot mobile devices
October 9, 2009 11:33 AM ETComputerworld - Researchers at the Open Source Computer Emergency Response Team (oCERT) disclosed two denial-of-service vulnerabilities in Google Inc.'s Android 1.5 mobile phone platform, both of which have already been patched by the vendor.
One of the vulnerabilities stems from Android's handling of SMS messages, according to an advisory released by oCERT earlier this week. The flaw allows an attacker to use malformed WAP (Wireless Application Protocol) Push messages to disconnect a mobile phone from a cellular network. WAP Push messages are typically used to send ringtones, wallpapers and other content to mobile users.
According to oCERT, a maliciously crafted WAP message can cause the phone to reboot without the user's knowledge, which can lead to a temporary loss of connectivity and dropped calls. In cases where the phone's SIM (subscriber identity module) is protected by a PIN, users will need to re-enter the PIN to re-establish connectivity, causing longer delays. When the bug is triggered repeatedly, it could result in a denial-of-service condition, oCERT said.
A similar vulnerability was discovered in several Sony Ericsson handsets earlier this year. In that case, a malformed WAP Push message could be used to remotely reboot a vulnerable handset.
The other DoS vulnerability was reported in the API for Android's Dalvik virtual machine. It also allows an attacker to create a DoS condition by causing a handset to repeatedly reboot without the user's knowledge.
The advisories were released this week after Google issued patches addressing both problems.
Read more about mobile and wireless in Computerworld's Mobile and Wireless Knowledge Center.
android
Additional Resources
Microsoft
Review how one energy firm tightened protection and simplified IT work using business-ready security solutions.
Sybase
In this white paper, IDC analyzes the role of next-generation mobile enterprise platforms as organizations seek a more strategic deployment of mobile solutions.
Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.
Learn the important issues you must consider before starting your next mobility initiative. Get your mobility white paper from IDC now, compliments of Sybase.
White Papers & Webcasts
Accelerating Your Mobile Workers: Controlling the Uncontrollable
Today's workforce is truly mobile. Unlike the managed environment of the office LAN, remote users face many challenges to being productive while out...
eGuide: Enterprise Security
Smart Security Strategies for 2010. Read now!
Managing Laptops Outside the Office
Learn how you can reduce costs by tracking mobile computers no matter where they are located.
How to Improve Remote User Satisfaction and Maximize ROI by Using SSL VPNs
Download this white paper today!
Mobile U Webinar
Watch Now!
The New Mobile Order
Download Now
4G Ahead Video Program
Uncover the features and benefits of the two leading 4G technologies for enterprises considering future deployment.
WAN Application Delivery for Executives
Learn how to simplify server and application administration without creating performance problems for distributed users.
Horror stories: Managing IT Across Multiple Locations
How one extra sharp IT manager eliminates daily agony, hassle and repetition.
Computerworld Reports
Sign up to receive updates on the latest Mobile and Wireless resources
