CVE-2011-1738

Name of the Vulnerable Software and Affected Versions HP Palm webOS versions 1.4.5 through 1.4.5.1

Description The issue is related to the improper restriction of Plug-in Development Kit (PDK) applications, allowing local users to gain privileges. This is achieved by leveraging unintended filesystem write access.

Recommendations For HP Palm webOS versions 1.4.5 through 1.4.5.1, consider restricting access to PDK applications until a proper fix is available. As a temporary workaround, limit filesystem write access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.