Privilege Escalation Vulnerability in HP Palm webOS
CVE-2011-1738

Currently unrated

Key Information:

Vendor: HP
Status: Palm Webos
Vendor: CVE Published:; 13 May 2011

Summary

HP Palm webOS versions 1.4.5 and 1.4.5.1 contain a vulnerability that fails to properly restrict Plug-in Development Kit (PDK) applications. This flaw enables local users to exploit unintended filesystem write access, potentially leading to unauthorized privilege escalation and system modifications.

References

http://www.securityfocus.com/bid/47788

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1025514

vdb-entryx_refsource_SECTRACK

https://www.itrc.hp.com/service/cki/docDisplay.do?docId=e...

vendor-advisoryx_refsource_HP

Timeline

Vulnerability published
May 13, 2011
Vulnerability Reserved
Apr 19, 2011