Vulnerabilities > CVE-2003-0406 - Unspecified vulnerability in Palmvnc 1.40

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
palmvnc

Summary

PalmVNC 1.40 and earlier stores passwords in plaintext in the PalmVNCDB, which is backed up to PCs that the Palm is synchronized with, which could allow attackers to gain privileges.

Vulnerable Configurations

Part Description Count
Application
Palmvnc
1