CVE-2008-4295

CVE Database · CVE-2008-4295

CVE-2008-4295

· N/AModified

CVSS v3.1

N/A

EPSS

30.14%

Published

Sep 27, 2008

Modified

Apr 22, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Windows Mobile 6.0 - Device Long Name Remote Reboot (Denial of Service)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Windows Mobile 6.0 on HTC Wiza 200 and HTC MDA 8125 devices does not properly handle the first attempt to establish a Bluetooth connection to a peer with a long name, which allows remote attackers to cause a denial of service (device reboot) by configuring a Bluetooth device with a long hci name and (1) connecting directly to the Windows Mobile system or (2) waiting for the Windows Mobile system to scan for nearby devices.

Weaknesses (CWE)

CWE-20

Affected Products (3)

microsoft · windows_mobilevulnerable

htc · mda

htc · wiza

References (8)

http://secunia.com/advisories/32066

http://www.securityfocus.com/bid/31420

https://exchange.xforce.ibmcloud.com/vulnerabilities/45463

https://www.exploit-db.com/exploits/6582

http://secunia.com/advisories/32066

http://www.securityfocus.com/bid/31420

https://exchange.xforce.ibmcloud.com/vulnerabilities/45463

https://www.exploit-db.com/exploits/6582

KEV Catalog EPSS Scores Vendors All CVEs