HOW TO ENTER NETWORK UNLOCK CODES (BLACKBERRY)

Blackberry


5xxx, 6xxx, 7xxx Series (except for BB 7100 and 7130)


1. Turn wireless mode off
2. Go to "Options" menu
3. Go to "SIM card"then press the jogdial to select it
4. Type MEPD (not case sensitive). You will not see text appear on screen while typing
5. It will say "Network active"
6. Press and hold the ALT key (half moon looking key on the lower left side)
7. While holding the ALT key type in MEPE (not case sensitive). You will not see text appear on screen while typing
8. When prompted enter supplied unlock code
9. After entering the code press the jog dial
10. Your phone is unlocked




Blackberry 7100, 7130


1. Turn wireless mode off
2. While on the home screen click the "Tools" icon
3. Go to "Options" menu
4. Select "Settings"
5. Go to "SIM card" then press the jogdial to select it. You should see the phone number and the SIM ID number
6. Type MEPP2 (not case sensitive). You will not see text appear on screen while typing.
Press ALT and 2 simultaneously to get number 2.
7. Enter supplied unlock code
8. After entering the code press the jog dial
9. Your phone is unlocked




Blackberry 8100 Pearl


1. Unlocking can be done without SIM card inserted
2. Turn wireless mode off
3. While on the home screen click the "Settings" icon
4. Go to "Options" menu
5. Select "Advanced options"
6. Go to "SIM card" then press the jogdial to select it
7. Type MEPP2. You will not see text appear on screen while typing
Press ALT and 2 simultaneously to get number 2.
8. Enter supplied unlock code
9. After entering the code press the trackball once
10. Your phone is unlocked
If the unlocking code is entered incorrectly the next attempt to unlock the device will be delayed for 10 seconds increments. The number of unlocking attempts is limited. When this number is reached the phone will be permanently blocked.




alternative instructions


1. Insert SIM card into the device
2. Power on the phone and turn Wireless Off
3. Go to "Settings" then "Options" menu and select "Advanced options"
4. Go to "SIM card" then press the jogdial to select it
5. Type MEPPD. Please note that you will not see what you type on the screen.
6. Type MEPP2. You will not see text appear on screen while typing
Press ALT and 2 simultaneously to get number 2.
7. Enter supplied unlock code
8. After entering the code press the trackball once
9. Your phone is unlocked




alternative instructions for some Vodafone Blackberry 8100


1. Insert non original SIM card into the device
2. Power on the phone and turn Wireless Off
3. Go to "Settings" then "Advanced options"
4. Go to "SIM card" then press the jogdial to select it
5. Type MEPP2 while holding Alt, multitap enabled (hold [Alt], type [M] [ER] [OP] [OP] [TY]. Please note that you will not see what you type on the screen.
6. When prompted with "Enter Network MEP code (255 left)" on the screen, enter the 16-digit network unlock code provided for your phone, then press Enter
7. Pull the battery out of the phone
8. Switch the phone on and the phone will be automatically unlocked
If the unlocking code is entered incorrectly the next attempt to unlock the device will be delayed for 10 seconds increments. The number of unlocking attempts is limited. When this number is reached the phone will be permanently blocked.
To unblock such phone, it must be taken to a RIM service centre. No outgoing calls including emergency call is possible when the phone is blocked.




Blackberry Curve, 8800, 8300


1. Unlocking can be done without SIM card inserted
2. Turn wireless mode off
3. While on the home screen click the "Settings" icon
4. Go to "Options" menu and select "Advanced options"
5. Select "SIM card"
6. Hold the ALT key while typing MEPE. You will not see text appear on screen while typing
7. You should be presented with a prompt "Enter Network MEP Code"
8. Enter supplied unlock code
9. After entering the code press the trackball once
10. Your phone is unlocked
If the unlocking code is entered incorrectly the next attempt to unlock the device will be delayed for 10 seconds increments. The number of unlocking attempts is limited. When this number is reached the phone will be permanently blocked.
To unblock such phone, it must be taken to a RIM service centre. No outgoing calls including emergency call is possible when the phone is blocked.




alternative instructions


1. Turn wireless mode off
2. While on the home screen click the "Settings" icon
3. Go to "Options" menu and select "Advanced options"
4. Select "SIM card"
5. While holding the ALT key type MEPD. You will not see text appear on screen while typing
6. While holding the ALT key type MEPE. You will not see text appear on screen while typing
7. You should be presented with a prompt "Enter Network MEP Code"
8. Enter supplied unlock code
9. After entering the code press the trackball once
10. Your phone is unlocked




Blackberry 8700, 8700c, 8707


1. Unlocking of these models requires a SIM card inserted (active or inactive)
2. Turn wireless mode off
3. While on the home screen click the "Settings" icon
4. Go to "Options" menu and select "Advanced options"
5. Select "SIM card"
6. Hold the ALT key while typing MEPE. You will not see text appear on screen while typing
7. You should be presented with a prompt "Enter Network MEP Code"
8. Enter supplied unlock code
9. After entering the code press the trackball once
10. Your phone is unlocked




Blackberry 8230 Curve


1. Press the "menu" key
2. Scroll and select "Manage connections"
3. Select "Turn all connections off"
4. Press "Escape" to go back to the "Home" screen
5. Go to "Options" menu and select "Advanced options"
6. Select "SIM card"
7. Hold the ALT key while typing MEPD. You will not see text appear on screen while typing. This opens up a personalization menu
8. Hold the ALT key while typing MEP2. You will not see text appear on screen while typing
Press ALT and 2 simultaneously to get number 2.
9. You should be presented with a prompt "Enter Network MEP Code"
10. Enter supplied unlock code
11. After entering the code press the trackball once
12. Restart your phone and restore connections by following the first two steps
13. Your phone is unlocked




Blackberry 9000, 9500, 9530 Storm


1. Insert any sim card
2. Scroll and select "Manage connections"
3. Select "Turn all connections off"
4. Press "Escape" to go back to the "Home" screen
5. Go to "Options" menu and select "Advanced options"
6. Select "SIM card"
7. Select "Show keyboard"
8. Hold the ALT key while typing MEPD. You will not see text appear on screen while typing. This opens up a personalization menu
9. Hold the ALT key while typing MEP2. You will not see text appear on screen while typing
Press ALT and 2 simultaneously to get number 2.
10. You should be presented with a prompt "Enter Network MEP Code"
11. Enter supplied unlock code
12. After entering the code press the trackball once
13. Restart your phone and restore connections by following the first two steps
14. Your phone is unlocked

0 vbSEO – From XSS to Reverse PHP Shell

XSS is not a big deal, or is it? On many occasions, I’ve seen this vulnerability being classified as useless, not serious, and being a low threat. What I’ve always had in mind is that it’s only the capabilities of the browser, and the hackers mind which sets the limit for a XSS attack.

It may seem impossible to do anything else other than stealing sessions, cookies and performing phishing, client side defacements etc. But take a look at the picture above, that is a reverse php shell automatically injected into the site, when a vBulletin administrator viewed a malicious linkback.

The vulnerability itself I’m referring to, is a 0day within vBSEO which exists within the administrator and moderator panel only. However, the attacker is able to inject persistent scripts via this linkback feature directly into the part of these panels handling these linkbacks.

In short, the attacker crafts a malicious HTML page as shown in the advisory. Then, the attacker clicks a link to the target forum with vBSEO installed, and when the target is reached, vBSEO performs a GET-request to the attacker’s malicious HTML page (if it’s served online and if RefBacks are enabled).

The title of this page is then loaded directly into the database, and an administrator can see it sanitized in the actual thread, but also in the admin and mod panel where the title is not sanitized at all, allowing the script to run.

What is actually possible?

After discovering and researching this vulnerability, I realised it was a fine case to do further studies on and then develop a XSS worm. Fortunately I got away from that idea due to the fact it could’ve been abused globally on forums with vBSEO installed. However, the idea itself was not bad so I began developing the payload aka the javascript, which would eventually inject a PHP payload via the nice plugin feature in vBulletin.

Initially, the XSS trojan I wrote should be able to do all of this silently without the user knowing, so instead of document.write being used, appendChild which uses DOM objects, was used instead. This took a bit more work in order to function better, but the result was that the visible window would not change to the affected user getting infected with this trojan.

When the user browses to, in this case “Moderate Linkbacks”, the script is executing as soon as the user hits that page. When this happens, the trojan checks whether infection has already happened once and if not, continues. Then an iframe is created outside the visible frames, where the adminhash and securitytoken (CSRF-token) is read and saved in a local variable in the browser.

Then a new form is injected into this iframe, which contains the adminhash and the securitytoken. The form itself contains the values needed to create a new and completely valid plugin which in this case, is PHP code. At this point, the script checks again if the user has already been infected and if not, the form is submitted, the plugin is created, and a cookie is set to prevent the script from going in loops.

Most administrators, would notice the broken lock icon in case they use HTTPS / SSL, and then they would view the source. The great thing about using javascript to create HTML objects, especially with “appendChild” etc. is that it is not visible. A debugger, such as Firebug shown in the picture above is needed, unless the admin finds the malicious javascript payload and reads what it does, but then it might be too late.

During the execution of the XSS trojan, a time-out is set. When time runs out, the XSS trojan will try to delete itself leaving almost no traces, besides the possible injected plugin, and the remains of the hidden iframe outside the frames which cannot be viewed due to the way HTML works in FireFox.

If the attacker was successful, and patient as well, he would eventually see that the target website had already connected back to retrieve the title, but also that another user had triggered the XSS Trojan which hopefully injected the PHP plugin specified by the attacker.

So what’s this tool I’ve been using during my presentation of this vulnerability? It’s a recently developed tool written in Python, where the payload is written in Javascript, freely available to anyone in the bottom of this blog. I recommend however, that a user of this tool looks inside the source code.

Is XSS a serious threat then?

Yes, it definitely is.
For a demonstration of the tool and this vulnerability, check either the YouTube or RapidShare link below.
References:
Advisory: vBSEO 3.5.2 & 3.2.2 – Persistent XSS via LinkBacks
Advisory #2: vbSEO Multiple Vulnerabilities
EvilWebTool: EvilWebTool
YT Video:  http://www.youtube.com/watch?v=B6QAjB3kYec
HQ Video: http://rapidshare.com/files/445021103/vbseo_0day.mp4

BlackBerry Travel App Is Now Available in India

The BlackBerry Travel app was announced on Feb. 14, 2011. It offers convenient push notifications and seamless integration of travel itineraries and flight status updates into the familiar BlackBerry Calendar. When a new booking confirmation or itinerary arrives in the user’s email inbox, the BlackBerry Travel app is automatically updated with the relevant itinerary details, which makes travel planning and management easier than ever.
With the BlackBerry push technology, the BlackBerry Travel app can keep users informed and in control of their itineraries by monitoring flight statuses and promptly providing notifications about changes to their flight information. The app can even identify potential omissions or scheduling concerns withthe itineraries, such as missing accommodations or timing conflicts, and provide users with suggestions.
The BlackBerry Travel app also brings together tools that travelers need while planning on the go, including: Hotel booking, Currency converters, Weather forecasts and Local search functionality.
In addition, BlackBerry smartphone users can share their travel information with colleagues, friends and family over email or through LinkedIn, directly from the BlackBerry Travel app. The LinkedIn integration allows users to search for people in their network who will be in the same city, send messages to contacts and update their status.
The BlackBerry Travel app also features a web component that allows users to book flights and car rentals, as well as print and edit itineraries, from their computer.
The BlackBerry Travel app will be available as a beta download today from the Test Center category on BlackBerry App World (www.blackberry.com/appworld). The app is free and works on select BlackBerry smartphones running the BlackBerry 5 OS (Device Software) or higher.

Angry Birds Rio for Android will launch exclusively on Amazon Appstore

Rovio Mobile, the producers of most popular game ‘Angry Birds’ have just announced that the upcoming new version ‘ Angry Birds Rio ’ for Android will be launched exclusively on Amazon’s Appstore. Initially, the gamewill be available as a paid app and a free ad-supported version would be added afterwards. Angry Birds and Angry Birds Seasons will also be added tothe Amazon Appstore as paid apps.

Send and Receive Email on Mobile Without GPRS

Send and Receive Instant Email on Mobile Without GPRS Using BlacMail App
Now it is possible to receive emails on your mobile withoutusing GPRS . This has been made possible by a new application called BlacMail. BlacMail, launched by BSNL , isa mobile app that allows you to receive and send emails onyour mobile phone instantly, without GPRS.
BlacMail allows you to connectwith other popular web mail service providers like Yahoo! Mail, Gmail and Hotmail as well as popular social networking sites like Facebook, Orkut and Twitte r. Additionally, it allows you to share job alerts from popularemployment portals like Naukri, TimesJobs and Monster. Presently, this pushmail service is available only in certain places in southern India. However, BSNL plans to launch the service nationwide soon.
Features of BlacMail
* White list –This feature helps you to receive emails from selected group of contacts only and thus avoid spam easily.
* Separate Mail Box – BlacMail is a separate app and hence it has a separate inbox for your mails. It does not clutter your inbox with SMS(s).
* BlacMail PIN – The PIN is toensure the safety of your BlacMail emails. After activating the PIN, you will have to enter that PIN every time you want to access BlacMail app on your mobile.
* On Demand Check Mail – This feature allows you to get your emails only when you want it.
BlacMail should work on any cell phone with Java, MIDP 2.0 + and CLDC 1.1 +.
Details and information
at
http://blacmail.in/