CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2009-5097

HIGH
7.1
CVSS Severity Score
EPSS Score0.1240%
EPSS Percentile39.07th
Published2011年9月13日
Last Modified2026年4月29日

Vulnerability Description

Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3.

Affected Platforms (CPE)

💻
Hp

Palm Pre Webos

<= 1.1.0
💻
Hp

Palm Pre Webos

= 1.0.2
💻
Hp

Palm Pre Webos

= 1.0.3
💻
Hp

Palm Pre Webos

= 1.0.4

References & Advisories

🔗 http://kb.palm.com/wps/portal/kb/na/pre/p100eww/sprint/solutions/article/50607_en.html#12
🔗 http://secunia.com/advisories/36936
🔗 http://tlhsecurity.blogspot.com/2009/10/palm-pre-webos-11-remote-file-access.html
🔗 http://www.precentral.net/webos-1-2-fixed-serious-file-security-issue
🔗 http://www.securitytracker.com/id?1022987
🔗 http://kb.palm.com/wps/portal/kb/na/pre/p100eww/sprint/solutions/article/50607_en.html#12
🔗 http://secunia.com/advisories/36936
🔗 http://tlhsecurity.blogspot.com/2009/10/palm-pre-webos-11-remote-file-access.html

相關漏洞威脅

CVE-2009-507110.0

Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown impact and attack vectors related to an "included contact tem...

CVE-2009-50985.4

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to...

CVE-2009-384610.0

Multiple heap-based buffer overflows in ovlogin.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allow remote...

CVE-2009-011910.0

Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to cause a denial of service (memory corruption and applicatio...