ID
VAR-201010-0502
TITLE
Microsoft Windows Mobile Overly Long vCard Name Field Denial of Service Vulnerability
Trust: 0.3
DESCRIPTION
Microsoft Windows Mobile is prone to a denial-of-service vulnerability because it fails to adequately validate user-supplied input. An attacker can exploit this issue to crash a device running Windows Mobile, denying service to legitimate users. Given the nature of this issue, the attacker may also be able to run arbitrary code, but this has not been confirmed. Windows Mobile versions 6.1 and 6.5 are vulnerable; other versions may also be affected.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | microsoft | model: | windows mobile | scope: | eq | version: | 6.5 | Trust: 0.3 |
| vendor: | microsoft | model: | windows mobile | scope: | eq | version: | 6.1 | Trust: 0.3 |
| vendor: | htc | model: | touch pro | scope: | eq | version: | 2 | Trust: 0.3 |
| vendor: | htc | model: | touch pro | scope: | eq | version: | 0 | Trust: 0.3 |
THREAT TYPE
network
Trust: 0.3
TYPE
Failure to Handle Exceptional Conditions
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 44287 | Trust: 0.3 |
REFERENCES
| url: | http://blog.securityarchitect.org/ | Trust: 0.3 |
| url: | http://www.microsoft.com/windowsmobile/default.mspx | Trust: 0.3 |
CREDITS
Celil ?nĂ¼ver from SecurityArchitect.Org
Trust: 0.3
SOURCES
| db: | BID | id: | 44287 |
LAST UPDATE DATE
2022-05-17T02:03:36.710000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 44287 | date: | 2010-10-21T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 44287 | date: | 2010-10-21T00:00:00 |