RSS   Vulnerabilities for '6131 nfc'   RSS

2009-01-02
 
CVE-2008-5827

CWE-16
 
 
The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware automatically installs software upon completing the download of a JAR file, which makes it easier for remote attackers to execute arbitrary code via a crafted URI record in an NDEF tag.

 
 
CVE-2008-5826

CWE-20
 
 
The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware allows remote attackers to cause a denial of service (device crash) via (1) a large value in the payload length field in an NDEF record, or a certain length for a (2) tel: or (3) sms: NDEF URI.

 
 
CVE-2008-5825

CWE-59
 
 
The SmartPoster implementation on the Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware does not properly display the URI record when the Title record contains a certain combination of space, CR (aka \r), and . (dot) characters, which allows remote attackers to trick a user into loading an arbitrary URI via a crafted NDEF tag, as demonstrated by (1) an http: URI for a malicious web site, (2) a tel: URI for a premium-rate telephone number, and (3) an sms: URI that triggers purchase of a ringtone.

 

 >>> Vendor: Nokia 38 Products
Ip440 firewall vpn appliance
Firewall appliance
6210 handset
Sgsn dx200
GGSN
Electronic documentation
IPSO
6310i
QT
Series
Affix
9500
3210
7610
N70
Symbian
Groupwise mobile server
Intellisync mobile suite
Intellisync wireless email express
N95
Series 40
6131 nfc
Symbian s60 browser
Nokia pc suite
N810 internet tablet
N82
Qtdemobrowser
Qt creator
Multimedia player
E75 firmware
E75
Pc suite
@vantage commander
I-240w-q gpon ont firmware
8810 4g firmware
Impact
Netact
Bts trs web console

Copyright 2024, cxsecurity.com

 

Back to Top