Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5493


Vulnerability Score 4.3 4.3
CVE Id CVE-2007-5493
Last Modified 15 Nov 2008 02:01:12
Published 17 Oct 2007 08:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



The SMS handler for Windows Mobile 2005 Pocket PC Phone edition allows attackers to hide the sender field of an SMS message via a malformed WAP PUSH message that causes the PDU to be incorrectly decoded.

Vulnerable Systems

Operating System

  • Microsoft Windows Mobile 2005



BID - 26091

BUGTRAQ - 20071017 SYMSA-2007-011: Microsoft WM5 PocketPC Phone Ed SMS Handler Issue

OSVDB - 45517

XF - win-mobile-sms-obfuscation(37249)

SECTRACK - 1018832

Last Updated: 27 May 2016 10:46:12