ID |
CVE-2000-1008
|
Summary |
PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 4.6 (as of 05-09-2008 - 20:22) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
LOCAL |
LOW |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
PARTIAL |
PARTIAL |
PARTIAL |
|
cvss-vector
via4
|
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
refmap
via4
|
atstake | A092600-1 | bid | 1715 |
|
Last major update |
05-09-2008 - 20:22 |
Published |
11-12-2000 - 05:00 |
Last modified |
05-09-2008 - 20:22 |