CVE-2009-5098

Currently unrated

Key Information:

Vendor: HP
Status: Palm Pre Webos
Vendor: CVE Published:; 13 September 2011

Summary

The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service (crash) via a web page containing a long string following a refresh tag, which triggers a floating point exception.

References

http://www.securityfocus.com/archive/1/507126/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://kb.palm.com/wps/portal/kb/na/pre/p100eww/sprint/so...

x_refsource_CONFIRM

http://tlhsecurity.blogspot.com/2009/10/palm-pre-webos-ve...

x_refsource_MISC

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 13, 2011
Vulnerability Reserved
Sep 13, 2011