Windows Phone Thoughts - Daily News, Views, Rants and Raves

Check out the hottest Windows Mobile devices at our Expansys store!

Digital Home Thoughts

Loading feed...

Laptop Thoughts

Loading feed...

Android Thoughts

Loading feed...

Go Back   Thoughts Media Forums > WINDOWS PHONE THOUGHTS > Windows Phone News

Thread Tools Display Modes
Old 12-13-2011, 06:34 AM
Richard Chao
Contributing Editor
Join Date: Feb 2011
Posts: 109
Default Critical Flaw Leaves Windows Phone OS Vulnerable To SMS Attack

"SMS attacks aren't just for Android and iOS devices anymore. WinRumors has reported a critical flaw in Windows Phone 7.5 that allows attackers to disable a device by carrying out a denial-of-service (DoS) attack via SMS."

Khaled Salameh, a reader, has found a fatal flaw in the way Windows Phone OS handles messages leaving WP OS vulnerable to SMS attacks.  Worse of all, the flaw is not limited to SMS.  It can be triggered by messages received via SMS, Facebook chat or Live Messenger.  Furthermore, messages do not have to be opened by the user.  A live tile preview of the message is enough to trigger the flaw.    

If triggered, the flaw will cause the device to reboot and the messaging hub to stop working.  The only way to get the messaging hub back is to perform a hard reset.  It is important to note that this flaw does not allow an attacker to take over a device but to essentially force the user to perform a hard reset.     

Microsoft is aware of the flaw but has yet to issue a fix or workaround.

Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

All times are GMT +1. The time now is 08:52 PM.