SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Device (VoIP/Phone/FAX)  >   Ericsson WAP Mobile Phones Vendors:   Ericsson
Ericsson WAP Mobile Phones Allow Remote Users to Eavesdrop on Other WAP Transactions
SecurityTracker Alert ID:  1001590
SecurityTracker URL:  http://securitytracker.com/id/1001590
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  May 23 2001
Impact:   Disclosure of user information


Description:   It is reported that Ericsson's WAP-enabled mobile phone(s) contain a vulnerability that allow users to eavesdrop on other users' WAP sessions.

It is reported that the user cannot select a specific phone number to monitor. The following menu sequence will reportedly result in another user's WAP sessions being displayed:

1) Type 904059
2) Menu
3) Yes
4) 1
5) RCL
6) Yes
7) 8300**
8) Yes
9) 86
(Instead of the ** you can write any number you wish, except for the
number 00)

To stop the session monitoring:
1) Type RCL
2) 3
3) Yes

Impact:   A user can monitor another user's WAP session.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.ericsson.com/ (Links to External Site)
Cause:   Access control error

Message History:   None.


 Source Message Contents

Subject:  [NEWS] Erricson WAP Mobile Phone Bug Allows Wiretapping



  Erricson WAP Mobile Phone Bug Allows Wiretapping
------------------------------------------------------------------------


SUMMARY

Erricson's WAP, Wireless Application Protocol, suffers from a security 
flaw that allows attackers to listen into other WAP sessions traveling on 
the cellular carrier wave.

DETAILS

Erricson Mobile Phone allows attackers to wiretap other lines. This attack 
is limited, since you cannot choose which number to wiretap on, and you 
cannot talk at the same time that you are wiretapping a line. This 
vulnerability shows the lack of security of WAP as it is offered in 
today's cellular networks.

IMPORTANT NOTE: Wiretapping is illegal. The following information is just 
a proof of concept that shows a potential vulnerability in Erricson's WAP 
implementation.

How to wiretap from an Erricson Cell Phone:
1) Type 904059
2) Menu
3) Yes
4) 1
5) RCL
6) Yes
7) 8300**
8) Yes
9) 86
(Instead of the ** you can write any number you wish, except for the 
number 00)

To stop the wiretapping:
1) Type RCL
2) 3
3) Yes


ADDITIONAL INFORMATION

The information has been provided by Pirsing, ::: m0sad team :::.



 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC