CVE-2008-3553

{"id": "CVE-2008-3553", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-08-08T19:41:00.000", "references": [{"url": "http://www.security-explorations.com/n2press.htm", "source": "cve@mitre.org"}, {"url": "http://www.security-explorations.com/n2srp.htm", "source": "cve@mitre.org"}, {"url": "http://www.security-explorations.com/n2vendors.htm", "source": "cve@mitre.org"}, {"url": "http://www.security-explorations.com/report_toc.pdf", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/495224/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30591", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/30592", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44437", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Nokia Series 40 3rd edition devices allow remote attackers to execute arbitrary code via unknown vectors, probably related to MIDP privilege escalation and persistent MIDlets, aka \"ISSUES 3-10.\" NOTE: as of 20080807, the only disclosure is a vague pre-advisory with no actionable information. However, because it is from a company led by a well-known researcher, it is being assigned a CVE identifier for tracking purposes."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en dispositivos Nokia Series 40 3rd edition permiten a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de vectores desconocidos, posiblemente relacionado con privilegios de escalado MIDP y la persistencia MIDlets, tambi\u00e9n conocido como \"CUESTIONES 3-10\". \r\nNOTA:a fecha 07/08/2008, la \u00fanica revelaci\u00f3n es un vago preaviso sin informaci\u00f3n de uso inmediato. Sin embargo, dado que proviene de un investigador reputado, se le ha asignado un identificador CVE con prop\u00f3sito de seguimiento."}], "lastModified": "2018-10-11T20:48:38.287", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sun:j2me:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A52C7C3-E86E-44D9-B92A-067F97E06673"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:nokia:series_40:*:3rd:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7286A349-0CAB-4449-A9A1-DBDCD2E0A4E2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:sun:j2me:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A52C7C3-E86E-44D9-B92A-067F97E06673"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}