Palm Pre webOS vCard Processing Code Execution Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 16 Aug 2010 4472 Views

RISK: Medium Risk

Medium Risk

A vulnerability has been identified in Palm Pre webOS, which could be exploited by remote attackers to take complete control of a vulnerable device. This issue is caused by an error when processing messages including a specially crafted electronic business card (vCard), which could be exploited by attackers to compromise an affected device and silently transmit or record personal and audio data by convincing a user to open a malicious vCard received in a text message.

Other unspecified vulnerabilities have been discovered and fixed.

Impact

  • Remote Code Execution
  • Information Disclosure

System / Technologies affected

  • Palm Pre webOS versions prior to 1.4.5

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

  • No CVE information is available

Source

Related Link

Share with

Previous

Opera Multiple Vulnerabilities

13 Aug 2010 4451 Views

Next

Apple QuickTime Error Logging Remote Buffer Overflow Vulnerability

16 Aug 2010 4437 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY