Multiple unspecified vulnerabilities in Nokia Series 40 3rd edition devices allow remote attackers to execute arbitrary code via unknown vectors, probably related to MIDP privilege escalation and persistent MIDlets, aka βISSUES 3-10.β NOTE: as of 20080807, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a company led by a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
www.security-explorations.com/n2press.htm
www.security-explorations.com/n2srp.htm
www.security-explorations.com/n2vendors.htm
www.security-explorations.com/report_toc.pdf
www.securityfocus.com/archive/1/495224/100/0/threaded
www.securityfocus.com/bid/30591
www.securityfocus.com/bid/30592
exchange.xforce.ibmcloud.com/vulnerabilities/44437