PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device.
References
Link | Resource |
---|---|
http://www.atstake.com/research/advisories/2000/a092600-1.txt | Exploit Patch Vendor Advisory |
http://www.securityfocus.com/bid/1715 | Exploit Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2000-11-29T05:00:00
Updated: 2003-05-08T09:00:00
Reserved: 2000-11-24T00:00:00
Link: CVE-2000-1008
JSON object: View
NVD Information
Status : Analyzed
Published: 2000-12-11T05:00:00.000
Modified: 2008-09-05T20:22:25.293
Link: CVE-2000-1008
JSON object: View
Redhat Information
No data.
CWE