CVE-2009-0396

EPSS 0.73%
Veröffentlicht 03.02.2009 01:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service (device reboot or hang-up) via a malformed WAP Push packet to (1) SMS or (2) UDP port 2948.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sony Ericsson ≫ K530i

Sony Ericsson ≫ K610i

Sony Ericsson ≫ K618i

Sony Ericsson ≫ K660i

Sony Ericsson ≫ K810i

Sony Ericsson ≫ W660i

Sony Ericsson ≫ W880i

Sony Ericsson ≫ W910i

Sony Ericsson ≫ Z610i

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.73%	0.716

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://secunia.com/advisories/33616

Vendor Advisory

http://www.mseclab.com/index.php?page_id=123

http://www.securityfocus.com/archive/1/500382/100/0/threaded

http://www.securityfocus.com/bid/33433

http://www.securitytracker.com/id?1021634

https://nvd.nist.gov/vuln/detail/CVE-2009-0396

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-0396

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-0396

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2009-0396