Vulnerabilities > Nokia > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-08-02 | CVE-2009-4975 | Cross-Site Scripting vulnerability in Nokia Qtdemobrowser Cross-site scripting (XSS) vulnerability in webview.cpp in QtDemoBrowser allows remote attackers to inject arbitrary web script or HTML via a URL associated with a nonexistent domain name, related to a "universal XSS" issue, a similar vulnerability to CVE-2010-2536. | 4.3 |
| 2007-05-11 | CVE-2007-2592 | Multiple vulnerability in Nokia products Multiple cross-site scripting (XSS) vulnerabilities in Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell Groupwise Mobile Server and Nokia Intellisync Wireless Email Express, allow remote attackers to inject arbitrary web script or HTML via the (1) username parameter to de/pda/dev_logon.asp and (2) multiple unspecified vectors in (a) usrmgr/registerAccount.asp, (b) de/create_account.asp, and other files. network nokia | 4.3 |
| 2007-05-11 | CVE-2007-2590 | Information Exposure vulnerability in Nokia products Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell Groupwise Mobile Server and Nokia Intellisync Wireless Email Express, allows remote attackers to obtain user names and other sensitive information via a direct request to (1) usrmgr/userList.asp or (2) usrmgr/userStatusList.asp. | 6.4 |
| 2006-08-31 | CVE-2006-4464 | Denial of Service vulnerability in Nokia Symbian S60 The Nokia Browser, possibly Nokia Symbian 60 Browser 3rd edition, allows remote attackers to cause a denial of service (crash) via JavaScript that constructs a large Unicode string. | 5.0 |
| 2005-09-28 | CVE-2005-3093 | Remote OBEX Denial Of Service vulnerability in Nokia 3210 And 7610 Nokia 7610 and 3210 phones allows attackers to cause a denial of service via certain characters in the filename of a Bluetooth OBEX transfer. | 5.0 |
| 2005-03-06 | CVE-2005-0681 | Remote Denial Of Service vulnerability in Nokia Series 60 Nokia Symbian 60 allows remote attackers to cause a denial of service (phone restart) via a Bluetooth nickname. | 5.0 |
| 2004-03-03 | CVE-2004-0143 | Remote Denial Of Service vulnerability in Multiple Nokia Object Exchange Protocol Message Multiple vulnerabilities in Nokia 6310(i) Mobile phones allow remote attackers to cause a denial of service (reset) via malformed Bluetooth OBject EXchange (OBEX) messages, probably triggering buffer overflows. | 5.0 |
| 2004-02-03 | CVE-2003-0368 | Improper Input Validation vulnerability in Nokia Ggsn Release1 Nokia Gateway GPRS support node (GGSN) allows remote attackers to cause a denial of service (kernel panic) via a malformed IP packet with a 0xFF TCP option. | 5.0 |
| 2003-10-29 | CVE-2003-1189 | Denial of Service vulnerability in Nokia Ipso 3.7 Unknown vulnerability in Nokia IPSO 3.7, configured as IP Clusters, allows remote attackers to cause a denial of service via unknown attack vectors. | 5.0 |
| 2003-10-06 | CVE-2003-0802 | Remote Security vulnerability in Nokia Electronic Documentation 5.0 Nokia Electronic Documentation (NED) 5.0 allows remote attackers to obtain a directory listing of the WebLogic web root, and the physical path of the NED server, via a "retrieve" action with a location parameter of . | 5.0 |