Network HotSync program in Handspring Visor does not have authentication, which allows remote attackers to retrieve email and files.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| handspring | visor_network_hotsync | 1.0 |
Handspring Visor 1.0 and 1.0.1 with the VisorPhone Springboard module installed allows remote attackers to cause a denial of service (PalmOS crash and VisorPhone database corruption) by sending a large or crafted SMS image.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| handspring | visor | 1.0 |
| palm | palm_os | * |
| handspring | visor | 1.0.1 |