Vulnerabilities > HP > Palm PRE Webos > 1.0.2

DATE CVE VULNERABILITY TITLE RISK
2011-09-13 CVE-2009-5098 Resource Management Errors vulnerability in HP Palm PRE Webos 1.0.2/1.0.3/1.0.4
The LunaSysMgr process in Palm Pre WebOS 1.1 and earlier, when not viewing web pages in landscape mode, allows remote attackers to cause a denial of service (crash) via a web page containing a long string following a refresh tag, which triggers a floating point exception.
network
high complexity
hp CWE-399
5.4
5.4
2011-09-13 CVE-2009-5097 Code Injection vulnerability in HP Palm PRE Webos 1.0.2/1.0.3/1.0.4
Palm Pre WebOS 1.1 and earlier processes JavaScript in email messages, which allows remote attackers to execute arbitrary JavaScript, as demonstrated by reading PalmDatabase.db3.
network
hp CWE-94
7.1
7.1
2011-04-19 CVE-2009-5071 Remote Security vulnerability in Palm Pre Webos
Unspecified vulnerability in Palm Pre WebOS before 1.2.1 has unknown impact and attack vectors related to an "included contact template file."
network
low complexity
hp
critical
 10.0
10