|
|
Nokia and Sun say 'Gowdiak may have a point' | | 2008/08/22 | | A researcher working for a Polish internet security company has recently had his claims about security issues over some mobile phone products confirmed.
Adam Gowdiak discovered flaws in the way that both Nokia and Sun were implementing mobile Java (J2ME) and had published a taster of his findings on his website.
He then offered to reveal the rest of his findings in return for €20,000 (£15,800) from each company, ZD Net reports.
Nokia and Sun have now confirmed that Mr Gowdiak's claims may carry some credence but appear to have seen enough of his research to launch an offensive on the problems.
Nokia have said that it has "been investigating the allegations made, using our normal processes and comprehensive testing and we can confirm that both claims are valid in some of our products".
A Sun spokesperson also conceded there was a threat but attached only modest concern saying: "Most of the 'security explorations' carried out by Gowdiak were specific to the Nokia phone stack's implementation of J2ME, rather than J2ME itself.
"Sun can confirm that there are a couple of potential vulnerabilities outlined in Mr Gowdiak's web post that are specific to J2ME but those are limited to older versions of J2ME.
"In addition, these vulnerabilities would be extremely difficult to exploit because they would require device-specific information that is not readily available." |
ALL RELATED ARTICLESAll General news
| | | RECENT RELATED ARTICLES | | New initiative to get more women into IT - 2008/09/22 A new programme aimed at increasing the number of women working in IT has been launched. ... | | | | .info websites pose greatest 'hack' risk - 2008/09/16 Websites with a .info top level domain name (TDL) are the most likely to have been hacked, according to new research. ... | | | | Website monitoring is essential in the internet age - 2008/09/10 The internet can give companies a global reach, attracting customers to websites where they can find out information, interact and buy products online. Their place in the modern business ... | | | | Cloudmark warns email providers of insufficient website monitoring - 2008/09/09 As viruses, and the methods used to deploy them, continue to push back the boundaries of sophistication and abundance, carrier-grade messaging security firm Cloudmark has warned that ... | | | | LSE trading halted as system goes down - 2008/09/08 A day of heavy trading at the London Stock Exchange (LSE) following the nationalisation of Fannie Mae and Freddy Mac - America's two biggest mortgage lenders - had to be suspended earlier ... | | |
|
|
|
