Vulnerabilities > CVE-2001-1006 - Unspecified vulnerability in Starfish Truesync Desktop 2.0B

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

starfish

NVD

Published: 2001-08-31

Updated: 2008-09-05

Summary

Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA does not encrypt sensitive files and relies solely on its password feature to restrict access, which allows an attacker to read the files using a different application.

Vulnerable Configurations

Part	Description	Count
Application	Starfish Starfish Truesync Desktop 2.0B	1

References

http://www.securityfocus.com/archive/1/210067
http://www.securityfocus.com/bid/3232