Lucene search

[email protected]CVE-2001-1438

HistoryOct 22, 2001 - 4:00 a.m.

CVE-2001-1438

2001-10-2204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

handspring visor

cve-2001-1438

system crash

sms image

database corruption

nvd

7.6 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.017 Low

EPSS

Percentile

87.7%

JSON

Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image.

CPENameOperatorVersion
palm:palm_ospalm palm oseq*
handspring:visorhandspring visoreq1.0
handspring:visorhandspring visoreq1.0.1

CPE	Name	Operator	Version
palm:palm_os	palm palm os	eq	*
handspring:visor	handspring visor	eq	1.0
handspring:visor	handspring visor	eq	1.0.1

References

www.kb.cert.org/vuls/id/222739

www.securityfocus.com/archive/82/222110

exchange.xforce.ibmcloud.com/vulnerabilities/10637

7.6 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.017 Low

EPSS

Percentile

87.7%

JSON