Lucene search

[email protected]CVE-2002-0120

HistoryMar 25, 2002 - 5:00 a.m.

CVE-2002-0120

2002-03-2505:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

apple

palm desktop

security flaw

data leak

backup files

sensitive information.

6.4 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

Apple Palm Desktop 4.0b76 and 4.0b77 creates world-readable backup files and folders when a hotsync is performed, which could allow a local user to obtain sensitive information.

CPENameOperatorVersion
palm:palm_desktoppalm palm desktopeq4.0b76
palm:palm_desktoppalm palm desktopeq4.0b77

CPE	Name	Operator	Version
palm:palm_desktop	palm palm desktop	eq	4.0b76
palm:palm_desktop	palm palm desktop	eq	4.0b77

References

online.securityfocus.com/archive/1/250093

www.iss.net/security_center/static/7937.php

www.securityfocus.com/bid/3863

6.4 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON