Bugtraq: Re: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass

From: agonline.dummy () gmail com
Date: 16 Feb 2007 16:56:40 -0000

All this hype over Treo's bug using 'Find' feature is unnecessary. This is completely false that hacker can get access 
to data. I tested it myself on my treo 650 and found out that I can only see the results after executing Find function. 
As soon as I click on any one of the find results, treo takes me back to the phone screen and does not let me enter 
into any of the contacts, memos, calendar or anything.

The agencies reporting the bug are not giving complete information. They told that hacker can access the Find functiona 
and see the results. But they did not tell that hacker CANNOT access any treo entry by clicking on the find results.

By Date By Thread

Current thread:

SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass research (Feb 14)
- <Possible follow-ups>
- Re: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass dkirker (Feb 16)
- Re: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass agonline . dummy (Feb 16)
- Re: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass chgsupra1 (Feb 22)
  - RE: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass Roger A. Grimes (Feb 22)
    - RE: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass McCarty, Eric C. (Feb 26)
    - RE: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass Roger A. Grimes (Feb 27)
- Re: Re: SYMSA-2007-002: Palm OS Treo Find Feature System Password Bypass chgsupra1 (Feb 22)