Vulnerabilities > CVE-2008-3552 - Security-Bypass vulnerability in Sun Java Micro Edition (ME)
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple unspecified vulnerabilities in Nokia Series 40 3rd edition FP1, and possibly later devices, allow remote attackers to execute arbitrary code via unknown vectors, probably related to MIDP privilege escalation and persistent MIDlets, aka "ISSUES 11-15." NOTE: as of 20080807, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a company led by a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 1 |
References
- http://www.security-explorations.com/n2press.htm
- http://www.security-explorations.com/n2srp.htm
- http://www.security-explorations.com/n2vendors.htm
- http://www.security-explorations.com/report_toc.pdf
- http://www.securityfocus.com/archive/1/495224/100/0/threaded
- http://www.securityfocus.com/bid/30591
- http://www.securityfocus.com/bid/30592
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44438