QwikSec

Security Database

CVE

CWE

Training

CVE-2008-5827

Published: Jan 2, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

The Nokia 6131 Near Field Communication (NFC) phone with 05.12 firmware automatically installs software upon completing the download of a JAR file, which makes it easier for remote attackers to execute arbitrary code via a crafted URI record in an NDEF tag.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.mulliner.org/nfc/feed/collin_mulliner_eusecwest08_attacking_nfc_phones.pdf

x_refsource_MISC

nokia-6131-ndef-recordparser-dos(44528)

vdb-entry

x_refsource_XF

http://events.ccc.de/congress/2008/Fahrplan/attachments/1109_collin_mulliner_eusecwest08_attacking_nfc_phones_slim.pdf

x_refsource_MISC

http://events.ccc.de/congress/2008/Fahrplan/events/2639.en.html

x_refsource_MISC

http://www.mulliner.org/nfc/feed/collin_mulliner_25c3_attacking_nfc_phones.pdf

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.