Denial of Service in Nokia Symbian 60 Browser 3rd Edition
CVE-2006-4464

Currently unrated

Key Information:

Vendor: Nokia
Status: Symbian
Vendor: CVE Published:; 31 August 2006

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2006-4464?

The Nokia Browser, particularly in the 3rd edition of the Nokia Symbian 60 platform, is susceptible to a denial of service condition due to a flaw in how it processes JavaScript. An attacker can exploit this vulnerability by sending a specially crafted JavaScript that generates a large Unicode string, leading to a crash of the browser. This disruption can impede users’ ability to access web content, thereby compromising the browsing experience and overall device usability.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2006-4464 - Proof of Concept

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/28353

vdb-entryx_refsource_XF

https://www.exploit-db.com/exploits/2176

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/bid/19484

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Aug 31, 2006
👾
Exploit known to exist
Aug 31, 2006
Vulnerability published
Aug 31, 2006
Vulnerability Reserved
Aug 31, 2006

CVE-2006-4464 Data

JSON