CVE-2004-2626 : GUI overlay vulnerability in the Java API in Siemens S55 cellular phones allows

GUI overlay vulnerability in the Java API in Siemens S55 cellular phones allows remote attackers to send unauthorized SMS messages by overlaying a confirmation message with a malicious message.

Published 2004-12-31 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2004-2626

Siemens » S55 » Version: 09.2179
cpe:2.3:h:siemens:s55:09.2179:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2004-2626

EPSS FAQ

2.36%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 83 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2004-2626

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.7	LOW	AV:L/AC:H/Au:N/C:P/I:P/A:P	1.9	6.4	NIST
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2004-2626

http://www.securityfocus.com/bid/10227

Exploit
http://www.osvdb.org/5703
http://marc.info/?l=full-disclosure&m=108325033624812&w=2
http://secunia.com/advisories/11492

About Secunia Research | Flexera
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/15995
http://marc.info/?l=full-disclosure&m=108308895624565&w=2
http://securitytracker.com/alerts/2004/Apr/1009959.html

Jump to

Vulnerability Details : CVE-2004-2626

Products affected by CVE-2004-2626

Exploit prediction scoring system (EPSS) score for CVE-2004-2626

CVSS scores for CVE-2004-2626

References for CVE-2004-2626