Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3.
CPE | Name | Operator | Version |
---|---|---|---|
palm_pre_webos | eq | 1.0.3 | |
palm_pre_webos | eq | 1.0.4 | |
palm_pre_webos | eq | 1.0.2 | |
palm_pre_webos | le | 1.1.0 |