Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Palm Pre WebOS 1.0.4 HTML Injection

🗓️ 06 Aug 2009 00:00:00Reported by Townsend Ladd HarrisType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 29 Views

Palm Pre WebOS 1.0.4 HTML Injection via Email and Calenda

Code
`I. Description  
  
The Palm Pre WebOS version 1.0.4 and below allows a remote attacker to execute arbitrary HTML code on the phone via certain applications. The affected applications involve the native email client via the notifications system as well as the native calendar application.  
  
The vendor has been contacted and a patch has been released:  
  
WebOS 1.1 - http://kb.palm.com/wps/portal/kb/na/pre/p100eww/sprint/solutions/article/50607_en.html#11  
  
II. Impact  
  
Email Notification System:  
  
A remote attacker is able to construct a malicious email that will cause the Palm Pre WebOS to execute arbitrary HTML code if the notification system is enabled. Upon receiving a malicious email where the FROM field contains HTML code, the Palm Pre WebOS will issue a user a notification that an email has arrived and execute the HTML code of the attacker’s choice. This vulnerability does not require user interaction.  
  
Calendar Application:  
  
A remote attacker can create a malicious calendar event putting arbitrary HTML code inside the event/title field that can be executed without user interaction. To trigger this vulnerability, any of the following conditions can occur:  
  
1. The victim Views the Calendar event and the malicious HTML will be executed.  
2. The victim enables a reminder notice for the malicious calendar event, upon being notified of the reminder, the  
malicious HTML code will be executed.  
3. The calendar event triggers and the malicious HTML code will be executed.  
  
In cases where calendar events can be sent to users without interaction/acceptance, the risk of this vulnerability is higher.  
  
III. Proof of Concept  
  
The following HTML code can be used to provide a proof of concept for each of the vulnerabilities listed in this advisory:  
  
"Test <META http-equiv="refresh" content="1;URL=http://www.google.com">"  
  
IV. About  
  
This vulnerability was discovered by Townsend Ladd Harris PalmPreHacker[at]gmail.com  
  
Details of this vulnerability can be found at: http://tlhsecurity.blogspot.com/2009/08/palm-pre-webos-104-remote-execution-of.html  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
06 Aug 2009 00:00Current
palm preweboshtml injectionemailcalendarremote attackarbitrary code
29