Vulnerability CVE-2001-1006


Published: 2001-08-31   Modified: 2012-02-12

Description:
Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA does not encrypt sensitive files and relies solely on its password feature to restrict access, which allows an attacker to read the files using a different application.

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None
Affected software
Starfish -> Truesync desktop 

 References:
http://www.securityfocus.com/archive/1/210067
http://www.securityfocus.com/bid/3232

Copyright 2024, cxsecurity.com

 

Back to Top