Monday, January 5, 2009

Nokia S60 phones exploit blocks SMS/MMS

DOS against Nokia Series 60 phones have been disclosed and demonstrated in 25th Chaos Communication Congress, Berlin , last week.

The 3GPP TS 23,040 standard specifies a method of sending email via SMS, if this email is longer than 32 characters, the affected symbian versions will fail to display the message or give any indication on the user interface, and the device will not be able to send or receive any more SMS or MMS messages.
S60 version 2.6 and 3.0 will be locked after just one message, while 2.8 and 3.1 will be locked up after more than 11 messages.

The only way to recover from this situation is to perform factory reset, no firmware update is available to fix this problem till now
Although this is not high security risk, the risk can be mitigated by the operators by filtering this kind of SMS on the network.

F-Secure report:
http://www.f-secure.com/weblog/archives/00001569.html

Advisory:
http://berlin.ccc.de/~tobias/cos/s60-curse-of-silence-advisory.txt

Video:
https://berlin.ccc.de/~tobias/cos/s60-curse-of-silence-demo.avi

Affected devices are mainly Nokia E and N sieres, list of models are in the advisory.

No comments: