Airscanner Corp, a research and development company working in the mobile security areas have disclosed information of a vulnerability on Pocket Controller 5.0 for Windows Mobile Pocket PC and Smartphones.
This vulnerability could allow an attacker to remotely initiate a “Hard Reset” and wipe all data in the main memory of these devices.
The company has set the severity level as medium to high, since any Pocket PC or Smartphone running the Pocket Controller application can be hard reset using a remote connection, while the device is connected to a cellular data network or to a wireless network.
Pocket Controller Professional is a popular, powerful remote control and management program that allows a user to remotely control a PDA from their PC computer.
Some details were disclosed and a proof of concept is available to MARA (Mobile Antivirus Researcher's Association) members.