Secunia Security Advisory - Tobias Engel has reported a vulnerability in various Nokia phones, which can be exploited by malicious people to cause a DoS (Denial of Service).
3f3aa5e3dd2574d358859013f57bc3db25466679e0426719b783e1e354a76160
----------------------------------------------------------------------
Did you know that a change in our assessment rating, exploit code
availability, or if an updated patch is released by the vendor, is
not part of this mailing-list?
Click here to learn more:
http://secunia.com/advisories/business_solutions/
----------------------------------------------------------------------
TITLE:
Nokia Phones SMS Denial of Service Vulnerability
SECUNIA ADVISORY ID:
SA33359
VERIFY ADVISORY:
http://secunia.com/advisories/33359/
CRITICAL:
Less critical
IMPACT:
DoS
WHERE:
>From remote
OPERATING SYSTEM:
Nokia E90 Communicator
http://secunia.com/advisories/product/19857/
Nokia E61 Phone
http://secunia.com/advisories/product/12437/
Nokia E71 Phone
http://secunia.com/advisories/product/20930/
Nokia N73 Phone
http://secunia.com/advisories/product/20931/
Nokia 6120 classic Phone
http://secunia.com/advisories/product/20932/
DESCRIPTION:
Tobias Engel has reported a vulnerability in various Nokia phones,
which can be exploited by malicious people to cause a DoS (Denial of
Service).
The vulnerability is caused due to an error in the processing of SMS
messages. This can be exploited to prevent a phone from receiving
further text messages by sending messages starting with a specially
crafted email address to an affected device.
The vulnerability is reported in the following devices:
* E61
* E90
* E71
* N73
* 6120 classic
NOTE: Reportedly, other Nokia phones based on S60 2.6, 2.8, 3.0 and
3.1 are also affected.
SOLUTION:
Secunia is currently not aware of a solution.
PROVIDED AND/OR DISCOVERED BY:
Tobias Engel
ORIGINAL ADVISORY:
Tobias Engel:
https://berlin.ccc.de/~tobias/cos/s60-curse-of-silence-advisory.txt
----------------------------------------------------------------------
About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.
Subscribe:
http://secunia.com/advisories/secunia_security_advisories/
Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/
Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
----------------------------------------------------------------------