Vulnerability Details : CVE-2008-3553
Multiple unspecified vulnerabilities in Nokia Series 40 3rd edition devices allow remote attackers to execute arbitrary code via unknown vectors, probably related to MIDP privilege escalation and persistent MIDlets, aka "ISSUES 3-10." NOTE: as of 20080807, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a company led by a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
Vulnerability category: Execute codeGain privilege
Exploit prediction scoring system (EPSS) score for CVE-2008-3553
Probability of exploitation activity in the next 30 days: 10.60%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 94 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2008-3553
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
CWE ids for CVE-2008-3553
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-3553
- http://www.securityfocus.com/bid/30591
- http://www.security-explorations.com/n2vendors.htm
- http://www.securityfocus.com/archive/1/495224/100/0/threaded
- http://www.security-explorations.com/report_toc.pdf
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/44437
- http://www.securityfocus.com/bid/30592
- http://www.security-explorations.com/n2press.htm
- http://www.security-explorations.com/n2srp.htm
Products affected by CVE-2008-3553
- cpe:2.3:a:sun:j2me:*:*:*:*:*:*:*:*