Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-4295
HistorySep 27, 2008 - 10:30 a.m.

CVE-2008-4295

2008-09-2710:30:03
CWE-20
[email protected]
web.nvd.nist.gov
19
cve-2008-4295
microsoft windows mobile
htc wiza 200
htc mda 8125
bluetooth
denial of service
vulnerability
nvd

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.407 Medium

EPSS

Percentile

97.3%

JSON

Microsoft Windows Mobile 6.0 on HTC Wiza 200 and HTC MDA 8125 devices does not properly handle the first attempt to establish a Bluetooth connection to a peer with a long name, which allows remote attackers to cause a denial of service (device reboot) by configuring a Bluetooth device with a long hci name and (1) connecting directly to the Windows Mobile system or (2) waiting for the Windows Mobile system to scan for nearby devices.

Affected configurations

NVD
Node
microsoftwindows_mobileMatch6.0
AND
htcmdaMatch8125
OR
htcwizaMatch200

Related

nvd 1
prion 1
cvelist 1
nvd
nvd
CVE-2008-4295
2008-09-27 10:30:03
prion
prion
Code injection
2008-09-27 10:30:00
cvelist
cvelist
CVE-2008-4295
2008-09-27 00:00:00

5.4 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

6.8 Medium

AI Score

Confidence

High

0.407 Medium

EPSS

Percentile

97.3%

JSON
Related for CVE-2008-4295
nvd1prion1cvelist1