HTC Touch vCard over IP Denial of Service PoC Code

2009.02.28
Risk: Medium
Local: Yes
Remote: No
CVE: N/A
CWE: N/A

Hello, PoC code for testing the MSL-2008-002 vulnerability HTC Touch vCard over IP Denial of Service is now available at: http://poc.mseclab.com/pocs/MSL-2008-002-PoC.py The code provide means for demonstrating the HTC Touch vCard over IP DoS by sending vCards to port UDP/9204 of the target IP address. The number of vCards (-c), the time interval between each vCard (-d), the length (-l) and, of course, the target address are configurable. The content of each message can also be selected (-t) by providing the desired content, that will be embedded in each vCard sent. Finally, a dedicated option (-s), can be used for demonstrating the effect of very large vCards. According to the advisory, these vCards are silently received without triggering any sound or ringtone, even if they have been properly selected on the UI settings. Regards. Mobile Security Lab

References:

http://seclists.org/bugtraq/2009/Feb/0243.html


Vote for this issue:
50%
50%


 

Thanks for you vote!


 

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.


(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2024, cxsecurity.com

 

Back to Top