CVE-2009-0396

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2009-0396
The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service (device reboot or hang-up) via a malformed WAP Push packet to (1) SMS or (2) UDP port 2948.

7.8 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://secunia.com/advisories/33616 Vendor Advisory
http://www.mseclab.com/index.php?page_id=123
http://www.securityfocus.com/archive/1/500382/100/0/threaded
http://www.securityfocus.com/bid/33433
http://www.securitytracker.com/id?1021634
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:sony_ericsson:k530i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:k610i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:k618i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:k660i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:k810i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:w660i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:w880i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:w910i:*:*:*:*:*:*:*:*
cpe:2.3:h:sony_ericsson:z610i:*:*:*:*:*:*:*:*
History

No history.

Information

Published : 2009-02-03 01:30

Updated : 2024-02-04 17:33

NVD link : CVE-2009-0396

Mitre link : CVE-2009-0396

CVE.ORG link : CVE-2009-0396

JSON object : View

Products Affected

sony_ericsson

  • k610i
  • k660i
  • w660i
  • w910i
  • z610i
  • k618i
  • k530i
  • w880i
  • k810i
CWE
CWE-20

Improper Input Validation