TUCoPS :: Phreaking Cellular - Major Manufacturers :: va2568.htm

Nokia Phoenix Service Software 2008.04.007.32837 overflow POC
Nokia Phoenix Service Software 2008.04.007.32837 overflow POC
Nokia Phoenix Service Software 2008.04.007.32837 overflow POC



------------------------------------------------------------------------------------------------------------=0D
BOF discovered and written by MurderSkillz=0D
------------------------------------------------------------------------------------------------------------=0D
Description:=0D
Company Name and Website=0D
Nokia=0D
www.Nokia.com=0D 
=0D
Software that comes with the Vulnerable .dll's:=0D
Nokia Phoenix Service Software 2008.04.007.32837  =0D
=0D
This software is used for flashing nokia cellphones and maintenance.=0D
Other versions of this software were not tested but may be vulnerable if the dll versions are the same as other Phoenix versions..=0D
=0D
Vulnerable dll's: cmnsignalanalyzerfn.dll {F85B4A10-B530-4D68-A714-7415838FD174}=0D
& cmnsignalgeneratorfn.dll {929A0D77-044A-497F-8FDF-8EDE81F6251A}=0D
Both file Versions are: 1.0.0.0=0D
=0D
RegKey Safe for Script: False=0D
RegkeySafe for Init: False=0D
KillBitSet: False=0D
=0D
The POC was tested on Windows XP Pro SP3 w/ Internet Explorer 7 - All patched=0D
Also Windows XP Pro SP2 w/ Internet Explorer 7=0D
=0D
By the way, props go out to shinnai for his tool, Roadmap.=0D
Major thanks go out to HD Moore and the Metasploit project/crew =) www.metasploit.com=0D 
Thanks sCORPINo =P www.snoop-security.com=0D 
=0D
The author of this POC is not responsible for any stupid shit you do with it =)=0D
------------------------------------------------------------------------------------------------------------=0D
=0D
=0D
=0D


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH