Vulnerabilities > CVE-2007-4213 - Unspecified vulnerability in Palm OS

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

palm

NVD

Published: 2007-08-21

Updated: 2024-11-21

Summary

Palm OS on Treo 650, 680, 700p, and 755p Smart phones allows remote attackers to cause a denial of service (device reset or hang) via a flood of large ICMP echo requests. NOTE: this is probably a different vulnerability than CVE-2003-0293.

Vulnerable Configurations

Part	Description	Count
OS	Palm Palm Palm OS *	1
Hardware	Treo Treo 650 * Treo 680 * Treo 700P * Treo 755P *	4

Seebug

bulletinFamily	exploit
description	BUGTRAQ ID: 25074 CVE(CAN) ID: CVE-2007-4213 Treo系列是运行Palm操作系统的智能手机。 Treo手机在处理ICMP请求时存在漏洞，远程攻击者可能利用此漏洞导致设备不可用。如果运行Palm操作系统的Treo手机连接到了数据网络并允许入站ICMP通讯的话，攻击者就可以通过向为手机所分配的IP地址连续发送大小为1470字节的ICMP回显请求导致设备待机、软重启或断开连接。降低报文大小但增加发送间隔时间也可以实现同样的效果。 Palm Treo Smartphone 755p Palm Treo Smartphone 700p Palm Treo Smartphone 680 Palm Treo Smartphone 650 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： <a href="http://www.palmos.com/" target="_blank">http://www.palmos.com/</a>
id	SSV:2150
last seen	2017-11-19
modified	2007-08-21
published	2007-08-21
reporter	Root
title	Palm Treo智能手机远程拒绝服务漏洞

Summary

Vulnerable Configurations

Seebug

References