SMobile systems has confirmed this vulnerability in the Symbian S60 platform. Known as the “Curse of Silence”, “Symbos SMSCurse” and “Curse of Death”, it allows an attacker to execute a Denial Of Service attack against a users handset by sending a specially crafted SMS message. SMobile Systems’ security analysts have been able to consistently replicate this vulnerability on the S60 platform in our Global Threat Center.

To exploit this vulnerability, an attacker creates a new SMS message with the type set as Email. In the body of the message, a string of text structured like an email address is entered. This “email address” must contain an @ symbol and a space immediately after the 34 or more character string.

Read the SMobile Threat Center Vulnerability Report…