Threat Level: green Handler on Duty: Rob VandenBrink

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Nokia Intellisync Mobile Suite

Published: 2007-05-11
Last Updated: 2007-05-12 00:08:28 UTC
by Mark Hofman (Version: 1)
0 comment(s)
Users of the Nokia Intellisync Mobile Suite may want to check out the following CVEs:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2590
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2591
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-2592
(Thanks Juha-Matti for the info)
The issues boils down to multiple cross site scripting issues (2592), a vulnerability allowing user account modification (2591) and  disclosure of user information (2590).  All are reported as being remotely exploitable.

Mark H
Shearwater
Keywords:
0 comment(s)
Diary Archives