CVE-2011-1738

Description

HP Palm webOS 1.4.5 and 1.4.5.1 does not properly restrict Plug-in Development Kit (PDK) applications, which allows local users to gain privileges by leveraging unintended filesystem write access.

Affected products

HP / palm_webos1.4.5 – 1.4.5
HP / palm_webos1.4.5.1 – 1.4.5.1

References

MISChttp://www.securityfocus.com/bid/47788
MISChttp://www.securitytracker.com/id?1025514
MISChttps://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02822174
MISChttps://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02822174