HTC Touch vCard over IP Denial of Service PoC Code

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1052153 漏洞类型
发布时间 2009-02-28 更新时间 2009-02-28
漏洞平台 N/A CVSS评分 N/A

PoC code for testing the MSL-2008-002 vulnerability
HTC Touch vCard over IP Denial of Service
is now available at:

The code  provide means for demonstrating the HTC Touch vCard over IP
DoS by sending vCards to port UDP/9204 of the target IP address.

The number of vCards (-c), the time interval between each vCard (-d),
the length (-l) and, of course, the target address are configurable.

The content of each message can also be selected (-t) by providing the
desired content, that will be embedded in each vCard sent.

Finally, a dedicated option (-s), can be used for demonstrating the
effect of very large vCards.
According to the advisory, these vCards are silently received without
triggering any sound or ringtone, even if they have been properly
selected on the UI settings.

Mobile Security Lab