Palm OS Treo Find Feature Information Disclosure Vulnerability
Palm OS Treo smartphones are vulnerable to a local information-disclosure vulnerability because the software fails to properly secure access to certain features when locked.
Successfully exploiting this issue allows attackers with physical access to affected devices to obtain potentially sensitive information. This may aid them in further attacks.
The following devices are known to be affected:
- Cingular Treo 650: Treo650-1.03a-VZW and Treo650-1.12-SPCS
- Cingular Treo 680
- Sprint/Verizon Treo 700p
Other versions of Treo smartphones are also likely affected.