Remote Information Disclosure Vulnerability in Nokia Intellisync Mobile Suite
CVE-2007-2590

Currently unrated

Key Information:

Vendor: Nokia
Status: Groupwise Mobile Server; Intellisync Mobile Suite; Intellisync Wireless Email Express
Vendor: CVE Published:; 11 May 2007

What is CVE-2007-2590?

The Nokia Intellisync Mobile Suite contains a vulnerability that permits remote attackers to access user-related information through targeted requests to specific URLs. These requests can potentially expose usernames and other sensitive data, particularly from versions 6.4.31.2, 6.6.0.107, and 6.6.2.2. This issue raises significant concerns regarding data protection and user privacy, highlighting the importance of securing endpoint configurations and access controls.

References

http://osvdb.org/34514

vdb-entryx_refsource_OSVDB

http://www.sec-consult.com/289.html

x_refsource_MISC

http://www.vupen.com/english/advisories/2007/1727

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 11, 2007
Vulnerability Reserved
May 10, 2007