Home page logo
/

bugtraq logo Bugtraq mailing list archives

Re[2]: Siemens *35 and 45 series phones SMS Danial of Service
From: Matti Haack <m.haack () haack-it de>
Date: Fri, 7 Mar 2003 12:53:06 +0100

Not all SL42 (wich should be identical with SL45) are influenced by
the bug. My SL42i shows luckily the DNS "%Deutsch" string without
error.

No, it won't. You actually have to open the message first, remember? The
phone will just receive the messages, waiting for them to be read.
But if you open it, you are cought... And how to determine if it is a
good or bad SMS?

Matti Haack

Oh, by the way: 'Hang up' doesn't work on SL-42 either. It also disables the
phone completely.

--
Michael Landsmann.

----- Original Message -----
From: "Willis Johnson" <willisj () microsoft com>
To: <bugtraq () securityfocus com>
Sent: Tuesday, March 04, 2003 12:28 AM
Subject: RE: Siemens *35 and 45 series phones SMS Danial of Service


What happens if the string is sent repeatedly while the phone is turned
on but is unattended or receives text messages silently? Is the battery
drained as predicted?

Willis

-----Original Message-----
From: Jan Niehusmann [mailto:jan () gondor com]
Sent: Monday, March 03, 2003 2:46 PM
To: subj subj
Subject: Re: Siemens *35 and 45 series phones SMS Danial of Service


On Mon, Mar 03, 2003 at 01:06:43AM -0000, subj subj wrote:
 To vulnerability are subject: All versions siemens *35 and *45.
[...]
 languages from the phone language selection menu, will  completely
disable *35 series phones and result  in a 2 minute read delay on *45
series phones. Note that

Please note that this vulnerability isn't as serious as you describe it.
At least on my S45, I am able to interrupt this 2 minute delay at any
time by pressing the 'hang up' key (but I have to press it for about
half a second instead of just hitting it), the message can be read by
using 'edit message' instead of 'read message', and it can be deleted
without problems.

So while this obviously is a bug, it can hardly be called a DoS.

Jan



- 
Matti Haack - Hit Haack IT Service Gmbh
Neuburger Strasse 35, D-94032 Passau
+49 851 50477-22 Fax: +49 851 50477-29
http://www.haack-it.de


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault