innovaphone IP222 11r2 sr9 Download Denial Of Service

Posted by deepcore on March 26, 2016 – 7:51 am

At startup the innovaphone IP222 sends an HTTP request for a special PNG file to the involved server system. After the download has finished, the image is displayed on the phone by selecting the receiver screen in the menu. Providing a large image file (6.9 MB) within the download process and selecting the receiver screen on the phone will lead to a crash of the application and cause a denial of service condition. Remote code execution via this security vulnerability may also be possible, but was not confirmed by the SySS GmbH.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« FireEye Malware Input Processor Privilege Escalation http://www.hansai.go.th »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

innovaphone IP222 11r2 sr9 Download Denial Of Service

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL