Re[2]: Siemens *35 and 45 series phones SMS Danial of Service

From: Matti Haack (m.haack@haack-it.de)
Date: Fri Mar 07 2003 - 03:53:06 PST

Next message: Mark Schellhase: "Re: Siemens *35 and 45 series phones SMS Danial of Service"

Previous message: Martinez, Sylvain: "Smoothwall Firewall SNORT buffer overflow"
In reply to: Michael Landsmann: "Re: Siemens *35 and 45 series phones SMS Danial of Service"
Next in thread: Robert Waldner: "Re: Siemens *35 and 45 series phones SMS Danial of Service"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Not all SL42 (wich should be identical with SL45) are influenced by
the bug. My SL42i shows luckily the DNS "%Deutsch" string without
error.

> No, it won't. You actually have to open the message first, remember? The
> phone will just receive the messages, waiting for them to be read.
But if you open it, you are cought... And how to determine if it is a
good or bad SMS?

Matti Haack

> Oh, by the way: 'Hang up' doesn't work on SL-42 either. It also disables the
> phone completely.

> --
> Michael Landsmann.

> ----- Original Message -----
> From: "Willis Johnson" <willisjat_private>
> To: <bugtraqat_private>
> Sent: Tuesday, March 04, 2003 12:28 AM
> Subject: RE: Siemens *35 and 45 series phones SMS Danial of Service


> What happens if the string is sent repeatedly while the phone is turned
> on but is unattended or receives text messages silently? Is the battery
> drained as predicted?

> Willis

> -----Original Message-----
> From: Jan Niehusmann [mailto:janat_private]
> Sent: Monday, March 03, 2003 2:46 PM
> To: subj subj
> Subject: Re: Siemens *35 and 45 series phones SMS Danial of Service


> On Mon, Mar 03, 2003 at 01:06:43AM -0000, subj subj wrote:
>>  To vulnerability are subject: All versions siemens *35 and *45.
> [...]
>>  languages from the phone language selection menu, will  completely
>> disable *35 series phones and result  in a 2 minute read delay on *45
>> series phones. Note that

> Please note that this vulnerability isn't as serious as you describe it.
> At least on my S45, I am able to interrupt this 2 minute delay at any
> time by pressing the 'hang up' key (but I have to press it for about
> half a second instead of just hitting it), the message can be read by
> using 'edit message' instead of 'read message', and it can be deleted
> without problems.

> So while this obviously is a bug, it can hardly be called a DoS.

> Jan



- 
Matti Haack - Hit Haack IT Service Gmbh
Neuburger Strasse 35, D-94032 Passau
+49 851 50477-22 Fax: +49 851 50477-29
http://www.haack-it.de

Next message: Mark Schellhase: "Re: Siemens *35 and 45 series phones SMS Danial of Service"
Previous message: Martinez, Sylvain: "Smoothwall Firewall SNORT buffer overflow"
In reply to: Michael Landsmann: "Re: Siemens *35 and 45 series phones SMS Danial of Service"
Next in thread: Robert Waldner: "Re: Siemens *35 and 45 series phones SMS Danial of Service"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Mar 07 2003 - 11:03:20 PST