Palmos
by Palm
CVEs (6)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2003-0293 | 0.03 | — | 0.04 | Jun 16, 2003 | PalmOS allows remote attackers to cause a denial of service (CPU consumption) via a flood of ICMP echo request (ping) packets. | ||
| CVE-2000-1008 | 0.03 | — | 0.00 | Dec 11, 2000 | PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device. | ||
| CVE-2007-4213 | 0.00 | — | 0.02 | Aug 21, 2007 | Palm OS on Treo 650, 680, 700p, and 755p Smart phones allows remote attackers to cause a denial of service (device reset or hang) via a flood of large ICMP echo requests. NOTE: this is probably a different vulnerability than CVE-2003-0293. | ||
| CVE-2002-0116 | 0.00 | — | 0.01 | Mar 25, 2002 | Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap. | ||
| CVE-2001-1438 | 0.00 | — | 0.01 | Oct 22, 2001 | Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image. | ||
| CVE-2001-0157 | 0.00 | — | 0.00 | Jun 2, 2001 | Debugging utility in the backdoor mode of Palm OS 3.5.2 and earlier allows attackers with physical access to a Palm device to bypass access restrictions and obtain passwords, even if the system lockout mechanism is enabled. |
- CVE-2003-0293Jun 16, 2003risk 0.03cvss —epss 0.04
PalmOS allows remote attackers to cause a denial of service (CPU consumption) via a flood of ICMP echo request (ping) packets.
- CVE-2000-1008Dec 11, 2000risk 0.03cvss —epss 0.00
PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device.
- CVE-2007-4213Aug 21, 2007risk 0.00cvss —epss 0.02
Palm OS on Treo 650, 680, 700p, and 755p Smart phones allows remote attackers to cause a denial of service (device reset or hang) via a flood of large ICMP echo requests. NOTE: this is probably a different vulnerability than CVE-2003-0293.
- CVE-2002-0116Mar 25, 2002risk 0.00cvss —epss 0.01
Palm OS 3.5h and possibly other versions, as used in Handspring Visor and Xircom products, allows remote attackers to cause a denial of service via a TCP connect scan, e.g. from nmap.
- CVE-2001-1438Oct 22, 2001risk 0.00cvss —epss 0.01
Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image.
- CVE-2001-0157Jun 2, 2001risk 0.00cvss —epss 0.00
Debugging utility in the backdoor mode of Palm OS 3.5.2 and earlier allows attackers with physical access to a Palm device to bypass access restrictions and obtain passwords, even if the system lockout mechanism is enabled.