Back to list
[SE-2008-01] J2ME Security Vulnerabilities 2008
Aug 07 2008 03:26PM
Security Explorations (contact security-explorations com)
The following information might be of interest for the readers of this list.
Security Explorations (http://www.security-explorations.com), a new security
research start-up company from Poland discovered two very serious security
vulnerabilities in mobile Java technology  coming from Sun Microsystems
and used by Nokia in its Series 40 platform  devices.
The vulnerabilities allow to completely bypass Java security
conduct certain malicious actions on a vulnerable device.
Research arm of Security Explorations proved that the following actions
be conducted in a reliable manner on selected Nokia phones:
* arbitrary sms/mms/WAP PUSH sending
* establishing of arbitrary phone calls
* establishing of arbitrary Internet connections
* full access to the files stored on a device
* video and audio recording
* full phonebook access
* SIM card access
* persistent and stealth backdoor code installation with the
The total number of vulnerable devices could reach the 1.5 billion  mark
due to the high possibility that a reference implementation of Sun's mobile
Java technology is affected (Sun Wireless Toolkit v. 2.5.2 is affected).
Security Explorations was also able to discover multiple (14 in total)
issues in Nokia Series 40 devices that among other things allow for the
exploitation of the mobile Java issues. Remote attackers can get
access to selected Nokia devices from arbitrary remote location. In a
remote execution of malicious applications can take place. All of that can
happen automatically and without the user consent.
Remote attack and successful backdoor application installation against
selected Nokia Series 40 devices was verified in the environment of a
network in Poland.
On selected Nokia devices, malicious application can be executed in the
background, which means that it will be not visible on the screen at
a feature of mobile Java implementation used in Nokia devices can be
by the attacker to silently control the vulnerable device. Security
Explorations implemented the shell application that could be used to run
arbitrary commands on a hacked Nokia Series 40 phone.
[ reply ]
Copyright 2010, SecurityFocus