Details of VAR-200312-0465

ID

VAR-200312-0465

CVE

CVE-2003-1464

TITLE

Siemens Mobile Phones% IMG_NAME Remote Denial of Service Attack Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2003-1244

DESCRIPTION

Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service (disconnect and unavailable inbox) via a Short Message Service (SMS) message with a long image name. There are vulnerabilities in Siemens 45 series phones. This is reportedly due to a boundary condition error that occurs when an overly large image name is included in a SMS message

Trust: 1.8

sources: NVD: CVE-2003-1464 // CNVD: CNVD-2003-1244 // BID: 7507 // VULHUB: VHN-8289

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2003-1244

AFFECTED PRODUCTS

vendor:	siemens	model:	m45	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	s45	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	s45	scope:	-	version:	-	Trust: 0.9
vendor:	siemens	model:	m45	scope:	-	version:	-	Trust: 0.9
vendor:	none	model:	-	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2003-1244 // BID: 7507 // CNNVD: CNNVD-200312-197 // NVD: CVE-2003-1464

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-1464
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200312-197
value:	HIGH
Trust: 0.6
VULHUB:	VHN-8289
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2003-1464
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-8289
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-8289 // CNNVD: CNNVD-200312-197 // NVD: CVE-2003-1464

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.1

sources: VULHUB: VHN-8289 // NVD: CVE-2003-1464

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200312-197

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200312-197

EXTERNAL IDS

db:	NVD	id:	CVE-2003-1464	Trust: 2.3
db:	BID	id:	7507	Trust: 2.0
db:	SREASON	id:	3287	Trust: 1.7
db:	CNNVD	id:	CNNVD-200312-197	Trust: 0.7
db:	CNVD	id:	CNVD-2003-1244	Trust: 0.6
db:	NSFOCUS	id:	4788	Trust: 0.6
db:	BUGTRAQ	id:	20030506 SIEMENS MOBILE PHONE - BUFFER OVERFLOW	Trust: 0.6
db:	XF	id:	11950	Trust: 0.6
db:	VULHUB	id:	VHN-8289	Trust: 0.1

sources: CNVD: CNVD-2003-1244 // VULHUB: VHN-8289 // BID: 7507 // CNNVD: CNNVD-200312-197 // NVD: CVE-2003-1464

REFERENCES

url:	http://www.securityfocus.com/bid/7507	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/320555	Trust: 1.7
url:	http://securityreason.com/securityalert/3287	Trust: 1.7
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/11950	Trust: 1.1
url:	http://xforce.iss.net/xforce/xfdb/11950	Trust: 0.6
url:	http://www.nsfocus.net/vulndb/4788	Trust: 0.6
url:	http://www.siemens-mobile.com	Trust: 0.3
url:	/archive/1/320555	Trust: 0.3

sources: VULHUB: VHN-8289 // BID: 7507 // CNNVD: CNNVD-200312-197 // NVD: CVE-2003-1464

CREDITS

subj r2subj3ct@dwcgr0up.com

Trust: 0.6

sources: CNNVD: CNNVD-200312-197

SOURCES

db:	CNVD	id:	CNVD-2003-1244
db:	VULHUB	id:	VHN-8289
db:	BID	id:	7507
db:	CNNVD	id:	CNNVD-200312-197
db:	NVD	id:	CVE-2003-1464

LAST UPDATE DATE

2024-08-14T13:51:17.821000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2003-1244	date:	2003-05-06T00:00:00
db:	VULHUB	id:	VHN-8289	date:	2017-07-29T00:00:00
db:	BID	id:	7507	date:	2003-05-06T00:00:00
db:	CNNVD	id:	CNNVD-200312-197	date:	2003-12-31T00:00:00
db:	NVD	id:	CVE-2003-1464	date:	2017-07-29T01:29:13.107

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2003-1244	date:	2003-05-06T00:00:00
db:	VULHUB	id:	VHN-8289	date:	2003-12-31T00:00:00
db:	BID	id:	7507	date:	2003-05-06T00:00:00
db:	CNNVD	id:	CNNVD-200312-197	date:	2003-05-06T00:00:00
db:	NVD	id:	CVE-2003-1464	date:	2003-12-31T05:00:00