mobile software vulnerabilities
vulnerabilities.aspcode.net
Searching mobile software vulnerabilities
Siemens 3568i WAP mobile phones allows remote a
attackers
|
service
|
Siemens
|
remote
|
denial
|
allows
|
mobile
|
phones
|
3568i
|
cause
|
WAP
|
Siemens 3568i WAP mobile phones allows remote attackers to cause a denial of service (crash) via an SMS message containing unusual characters.
Multiple vulnerabilities in Nokia 6310(i) Mobil
vulnerabilities
|
Multiple
|
Nokia
|
Multiple vulnerabilities in Nokia 6310(i) Mobile phones allow remote attackers to cause a denial of service (reset) via malformed Bluetooth OBject EXchange (OBEX) messages, probably triggering buffer overflows.
Multiple unknown vulnerabilities in Oracle 9i L
vulnerabilities
|
Multiple
|
unknown
|
Mobile
|
Server
|
Oracle
|
Lite
|
Multiple unknown vulnerabilities in Oracle 9i Lite Mobile Server 5.0.0.0.0 through 5.0.2.9.0 allow remote authenticated users to gain privileges.
Cross-site scripting (XSS) vulnerability in Inf
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in Infinite Mobile Delivery Webmail 2.6 allows remote attackers to inject arbitrary web script or HTML via the URL.
Infinite Mobile Delivery Webmail 2.6 allows rem
information
|
characters
|
foldername
|
sensitive
|
attackers
|
contains
|
Infinite
|
Delivery
|
Webmail
|
request
|
Windows
|
invalid
|
message
|
reveals
|
Mobile
|
remote
|
allows
|
which
|
error
|
path
|
gain
|
HTTP
|
via
|
Infinite Mobile Delivery Webmail 2.6 allows remote attackers to gain sensitive information via an HTTP request that contains invalid characters for a Windows foldername, which reveals the path in an error message.
LG U8120 mobile phone allows remote attackers t
attackers
|
service
|
remote
|
denial
|
mobile
|
allows
|
U8120
|
phone
|
cause
|
LG U8120 mobile phone allows remote attackers to cause a denial of service (device crash) via a malformed MIDI file.
SQL injection vulnerability in index.php in Mob
vulnerability
|
MobeScripts
|
attackers
|
Community
|
arbitrary
|
injection
|
parameter
|
indexphp
|
commands
|
execute
|
browse
|
Mobile
|
allows
|
remote
|
Space
|
SQL
|
via
|
SQL injection vulnerability in index.php in MobeScripts Mobile Space Community 2.0 allows remote attackers to execute arbitrary SQL commands via the browse parameter.
Directory traversal vulnerability in index.php
vulnerability
|
MobeScripts
|
Community
|
attackers
|
arbitrary
|
traversal
|
Directory
|
indexphp
|
remote
|
Mobile
|
allows
|
files
|
Space
|
read
|
via
|
Directory traversal vulnerability in index.php in MobeScripts Mobile Space Community 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the uid parameter in the rss page.
PDAapps Verichat for Pocket PC 1.30bh stores us
\HKEY_CURRENT_USER\Software\PDAapps\VeriChat
|
information
|
plaintext
|
usernames
|
sensitive
|
passwords
|
registry
|
Verichat
|
PDAapps
|
Windows
|
stores
|
Pocket
|
allows
|
Mobile
|
obtain
|
under
|
130bh
|
which
|
users
|
local
|
keys
|
via
|
PDAapps Verichat for Pocket PC 1.30bh stores usernames and passwords in plaintext in the Windows Mobile registry, which allows local users to obtain sensitive information via keys under \HKEY_CURRENT_USER\Software\PDAapps\VeriChat.
Shape Services IM+ Mobile Instant Messenger for
Messenger
|
Services
|
Instant
|
Pocket
|
Mobile
|
Shape
|
IM+
|
Shape Services IM+ Mobile Instant Messenger for Pocket PC 3.10 stores usernames and passwords in plaintext in %PROGRAMFILES%\IMPlus\implus.cfg, which allows local users to obtain sensitive information by reading the file.
Multiple unspecified vulnerabilities in Oracle
vulnerabilities
|
authenticated
|
unspecified
|
E-Business
|
11510CU2
|
Multiple
|
unknown
|
vectors
|
remote
|
attack
|
Oracle
|
impact
|
Suite
|
Vuln#
|
have
|
aka
|
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and remote authenticated attack vectors, aka Vuln# (1) APPS06 for Oracle CRM Gateway for Mobile Devices and (2) APPS08 for Oracle iStore.
Unspecified vulnerability in the Bluetooth stac
administrative
|
vulnerability
|
Unspecified
|
attackers
|
Microsoft
|
Bluetooth
|
edition
|
Windows
|
remote
|
access
|
Mobile
|
Pocket
|
allows
|
stack
|
gain
|
Unspecified vulnerability in the Bluetooth stack in Microsoft Windows Mobile Pocket PC edition allows remote attackers to gain administrative access (aka Remote Root) via unspecified vectors.
Buffer overflow in Resco Photo Viewer for Pocke
PocketPC
|
overflow
|
Viewer
|
Buffer
|
Resco
|
Photo
|
Buffer overflow in Resco Photo Viewer for PocketPC 4.11 and 6.01, as used in mobile devices running Windows Mobile 5.0, 2003, and 2003SE, allows remote attackers to execute arbitrary code via a crafted PNG image.
Pictures and Videos on Windows Mobile 5.0 and W
Pictures
|
Windows
|
Mobile
|
Videos
|
Pictures and Videos on Windows Mobile 5.0 and Windows Mobile 2003 and 2003SE for Smartphones and PocketPC allows user-assisted remote attackers to cause a denial of service (device hang) via a malformed JPEG file.
Internet Explorer on Windows Mobile 5.0 and Win
Explorer
|
Internet
|
Windows
|
Mobile
|
Internet Explorer on Windows Mobile 5.0 and Windows Mobile 2003 and 2003SE for Smartphones and PocketPC allows attackers to cause a denial of service (application crash and device instability) via unspecified vectors, possibly related to a buffer overflow.
T-Mobile voice mail systems allow remote attack
Identification
|
reconfigure
|
attackers
|
mailboxes
|
retrieve
|
spoofing
|
messages
|
T-Mobile
|
systems
|
Calling
|
remote
|
remove
|
Number
|
allow
|
voice
|
mail
|
T-Mobile voice mail systems allow remote attackers to retrieve or remove messages, or reconfigure mailboxes, by spoofing Calling Number Identification (CNID, aka Caller ID).
Buffer overflow in Hitachi Groupmax Mobile Opti
Mobile-Phone
|
unspecified
|
arbitrary
|
attackers
|
overflow
|
Groupmax
|
through
|
execute
|
Hitachi
|
vectors
|
Buffer
|
allows
|
remote
|
Option
|
i-mode
|
Mobile
|
05-11
|
07-30
|
07-00
|
05-23
|
06-04
|
06-00
|
EZweb
|
code
|
via
|
Buffer overflow in Hitachi Groupmax Mobile Option for Mobile-Phone 07-00 through 07-30, 5 for i-mode 05-11 through 05-23, and 6 for EZweb 06-00 through 06-04 allows remote attackers to execute arbitrary code via unspecified vectors.
Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.
Intellisync
|
Mobile
|
Suite
|
Nokia
|
Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell Groupwise Mobile Server and Nokia Intellisync Wireless Email Express, allows remote attackers to obtain user names and other sensitive information via a direct request to (1) usrmgr/userList.asp or (2) usrmgr/userStatusList.asp.
usrmgr/userList.asp in Nokia Intellisync Mobile
usrmgr/userListasp
|
Intellisync
|
Mobile
|
Suite
|
Nokia
|
usrmgr/userList.asp in Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell Groupwise Mobile Server and Nokia Intellisync Wireless Email Express, allows remote attackers to modify user account details and cause a denial of service (account deactivation) via the userid parameter in an update action.
Directory traversal vulnerability in data/compa
data/compatiblephp
|
vulnerability
|
Entertainment
|
attackers
|
arbitrary
|
traversal
|
Directory
|
PHP-Nuke
|
include
|
execute
|
allows
|
Mobile
|
remote
|
local
|
files
|
addon
|
Nuke
|
via
|
Directory traversal vulnerability in data/compatible.php in the Nuke Mobile Entertainment 1 addon for PHP-Nuke allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module_name parameter.
Software vulnerabilities results 1 to 20 of 42
Page:
1
2
3
►