Palm TinySheet Password Bypass Vulnerability
BID:2434
Info
Palm TinySheet Password Bypass Vulnerability
| Bugtraq ID: | 2434 |
| Class: | Access Validation Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Feb 11 2001 12:00AM |
| Updated: | Feb 11 2001 12:00AM |
| Credit: | Reported to Bugrtaq by Paulo Cesar Breim <[email protected]> on Sun, 11 Feb 2001. |
| Vulnerable: |
Iambic TinySheet 3.1.1 Iambic TinySheet 3.1 Iambic TinySheet 3.0.3 Final Iambic TinySheet 3.0.2 Iambic TinySheet 3.0.1 Iambic TinySheet 3.0 |
| Not Vulnerable: | |
Discussion
Palm TinySheet Password Bypass Vulnerability
TinySheet is a spreadsheet program for the Palm platform.
TinySheet's Import function allows a user to select and import files which have been password-protected without supplying the required password. As a result, sensitive or private information may be disclosed to a malcious user having physical access to the Palm device.
TinySheet is a spreadsheet program for the Palm platform.
TinySheet's Import function allows a user to select and import files which have been password-protected without supplying the required password. As a result, sensitive or private information may be disclosed to a malcious user having physical access to the Palm device.
Exploit / POC
Palm TinySheet Password Bypass Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.