CVE-2000-1008
Published Dec 11, 2000
Last updated 16 years ago
Overview
- Description
- PalmOS 3.5.2 and earlier uses weak encryption to store the user password, which allows attackers with physical access to the Palm device to decrypt the password and gain access to the device.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:palm:palm_os:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "189F51EC-95A6-499A-8F51-39F67B49C7C2",
"versionEndIncluding": "3.5.2"
}
],
"operator": "OR"
}
]
}
]