Vulnerability Details CVE-2009-2538
The Nokia N95 running Symbian OS 9.2, N82, and N810 Internet Tablet allow remote attackers to cause a denial of service (memory consumption) via a large integer value for the length property of a Select object, a related issue to CVE-2009-1692.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 80.5%
CVSS Severity
CVSS v2 Score 7.1
References
- http://www.exploit-db.com/exploits/9160
- http://www.g-sec.lu/one-bug-to-rule-them-all.html
- http://www.securityfocus.com/archive/1/504969/100/0/threaded
- http://www.securityfocus.com/archive/1/504988/100/0/threaded
- http://www.securityfocus.com/archive/1/504989/100/0/threaded
- http://www.securityfocus.com/archive/1/505006/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52872
- http://www.exploit-db.com/exploits/9160
- http://www.g-sec.lu/one-bug-to-rule-them-all.html
- http://www.securityfocus.com/archive/1/504969/100/0/threaded
- http://www.securityfocus.com/archive/1/504988/100/0/threaded
- http://www.securityfocus.com/archive/1/504989/100/0/threaded
- http://www.securityfocus.com/archive/1/505006/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/52872
Products affected by CVE-2009-2538
-
cpe:2.3:h:nokia:n810_internet_tablet:*
-
cpe:2.3:h:nokia:n82:*
-
cpe:2.3:h:nokia:n95:-
-
cpe:2.3:h:nokia:n95:12.0.0.013
-
cpe:2.3:h:nokia:n95:12.0.013
-
cpe:2.3:o:nokia:symbian:9.2