Vulnerabilities > Microsoft > Windows Mobile > 6.0

DATE CVE VULNERABILITY TITLE RISK
2009-01-21 CVE-2009-0244 Path Traversal vulnerability in Microsoft Windows Mobile 5.0/6.0
Directory traversal vulnerability in the OBEX FTP Service in the Microsoft Bluetooth stack in Windows Mobile 6 Professional, and probably Windows Mobile 5.0 for Pocket PC and 5.0 for Pocket PC Phone Edition, allows remote authenticated users to list arbitrary directories, and create or read arbitrary files, via a ..
network
low complexity
microsoft CWE-22
8.8
2008-10-13 CVE-2008-4540 Credentials Management vulnerability in Microsoft Windows Mobile 6.0
Windows Mobile 6 on the HTC Hermes device makes WLAN passwords available to an auto-completion mechanism for the password input field, which allows physically proximate attackers to bypass password authentication and obtain WLAN access.
local
low complexity
htc microsoft CWE-255
2.1
2008-09-27 CVE-2008-4295 Improper Input Validation vulnerability in Microsoft Windows Mobile 6.0
Microsoft Windows Mobile 6.0 on HTC Wiza 200 and HTC MDA 8125 devices does not properly handle the first attempt to establish a Bluetooth connection to a peer with a long name, which allows remote attackers to cause a denial of service (device reboot) by configuring a Bluetooth device with a long hci name and (1) connecting directly to the Windows Mobile system or (2) waiting for the Windows Mobile system to scan for nearby devices.
network
high complexity
microsoft htc CWE-20
5.4