PT-2002-2842 · Check Point · Pointsec

Published

2002-12-31

Updated

2008-09-05

CVE-2002-2122

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Pointsec versions prior to 1.2 for PalmOS

Description: The issue allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory, as the PIN number is stored in memory in plaintext.

Recommendations: For versions prior to 1.2, consider changing the PIN and ensuring the device is locked when not in use to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-2122

Affected Products

Pointsec

PT-2002-2842 · Check Point · Pointsec

CVE-2002-2122

Related Identifiers

Affected Products

References · 4