Vulnerability Description
The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service (device reboot or hang-up) via a malformed WAP Push packet to (1) SMS or (2) UDP port 2948.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sony Ericsson | K530I | All versions |
| Sony Ericsson | K610I | All versions |
| Sony Ericsson | K618I | All versions |
| Sony Ericsson | K660I | All versions |
| Sony Ericsson | K810I | All versions |
| Sony Ericsson | W660I | All versions |
| Sony Ericsson | W880I | All versions |
| Sony Ericsson | W910I | All versions |
| Sony Ericsson | Z610I | All versions |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/33616Vendor Advisory
- http://www.mseclab.com/index.php?page_id=123
- http://www.securityfocus.com/archive/1/500382/100/0/threaded
- http://www.securityfocus.com/bid/33433
- http://www.securitytracker.com/id?1021634
- http://secunia.com/advisories/33616Vendor Advisory
- http://www.mseclab.com/index.php?page_id=123
- http://www.securityfocus.com/archive/1/500382/100/0/threaded
- http://www.securityfocus.com/bid/33433
- http://www.securitytracker.com/id?1021634
FAQ
What is CVE-2009-0396?
CVE-2009-0396 is a vulnerability with a CVSS score of 7.8 (HIGH). The Sony Ericsson W910i, W660i, K618i, K610i, Z610i, K810i, K660i, W880i, and K530i phones allow remote attackers to cause a denial of service (device reboot or hang-up) via a malformed WAP Push packe...
How severe is CVE-2009-0396?
CVE-2009-0396 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0396?
Check the references section above for vendor advisories and patch information. Affected products include: Sony Ericsson K530I, Sony Ericsson K610I, Sony Ericsson K618I, Sony Ericsson K660I, Sony Ericsson K810I.