CVE-2006-4464

Nokia Symbian Browser - Denial of Service via Large Unicode String

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-4464. PoCs published by Qode.

AI-analyzed exploit summary This exploit triggers a crash in the Nokia Browser by attempting to allocate an excessively large string, likely causing a buffer overflow or memory exhaustion. The shellcode placeholder suggests an intent for arbitrary code execution, though the actual payload is not functional.

Description

The Nokia Browser, possibly Nokia Symbian 60 Browser 3rd edition, allows remote attackers to cause a denial of service (crash) via JavaScript that constructs a large Unicode string.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Qode · htmldoshardware

https://www.exploit-db.com/exploits/2176

View Code ZIP pw:eip

This exploit triggers a crash in the Nokia Browser by attempting to allocate an excessively large string, likely causing a buffer overflow or memory exhaustion. The shellcode placeholder suggests an intent for arbitrary code execution, though the actual payload is not functional.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Nokia Browser (version unspecified)

No auth needed

Prerequisites: Victim must visit a malicious webpage using the vulnerable Nokia Browser

MITRE ATT&CK