Nokia N95-8 browser denial of service

2009.02.06

Credit: Juan Pablo Lopez Yacubian

Risk: Medium

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

 Application: Nokia N95-8
OS: Symbian
------------------------------------------------------
1 - Description
2 - Vulnerability
3 - POC/EXPLOIT

------------------------------------------------------
Description

The nokia n95 is a smartphone, this phone have more tools, for example: gps,mp3,camera,wireless.

:)

------------------------------------------------------
Vulnerability

The code of this bug was found long ago, was for firefox 1.0 and caused denial of service.

The problem was that when you insert many html tags (<marquee>) the program crash.

I 'm testing this code in the browser of nokia n95 and this crash, only the browser.., the bug is very inofensive 

but is curious

------------------------------------------------------
POC/EXPLOIT

Enter in this url 

http://es.geocities.com/jplopezy/nokiacrash.html

or make html file and insert many tags <marquee> 

------------------------------------------------------
Juan Pablo Lopez Yacubian

References:

http://seclists.org/bugtraq/2009/Feb/0039.html

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Nokia N95-8 browser denial of service

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.