Palm Decides Not to Address Treo Vulnerability

Filed in archive News , Palm , Smartphones , Useful Info by Rico Mossesgeld on February 20, 2007

Symantec recently highlighted a vulnerability on recent Palm OS-powered Treos:

Palm OS Treo smartphones are equipped with a system password lock to secure contents of handheld data from unauthorized access. When this lock is engaged, Treo's built-in Find feature is still accessible and can be used to perform searches on text in Treo applications and databases (e.g. SMS Messages, Memos, Calendar, Tasks, etc). Search results are accessible, and depending on their size, may be truncated. An attacker may use this vulnerability to retrieve information from a locked device.

The built-in Find feature can also be used to access an Edit window and paste previously cut or copied data into the search field of a locked device. An attacker may use this vulnerability to view data that was cut or copied from Treo applications prior to the device being locked. [Emphasis mine]

The Treo 650, 680, and 700p are affected by this.

Palm was apparently notified of the problem and they decided not to address it. It isn't really a severe vulnerability if you think about it. You should never leave a smartphone or PDA alone with someone else anyway (the "attack" can only be carried out with direct access to the phone), especially if you have valuable data stored on it. But it's good to see people stepping up to solve the problem.

Related Entries:

Palm Updates GPS Navigation Pack on Treo - 15 August 2006
What Palm Wants You to Know About the Treo - 30 November 2006
Palm at CES - Treo 750 Reviewed; SlingPlayer Mobile for Palm... - 08 January 2007
Palm on a Fixing Spree, Releases DST and Built-in Find Vulne... - 23 February 2007
Leaked Sprint Roadmap Reveals 11 Smartphones and PDAs for th... - 22 August 2007

« Getting Rid of Your S60 3... | Main | Protect Your Multiple Sma... »

Permalink: Palm Decides Not to Address Treo Vulnerability

Tags: Treo+Find+Vulnerability Palm+OS+Treo+Security Symantec mobile palm treo+vulnerability address+treo d

Trackback: http://publish.creative-weblogging.com/publish/mt-tb.pl/54418

Addthis

Ask

Blinklist

del.icio.us

Digg

Fark

Facebook

Google

Lycos

Ma.gnolia

Mr Wong

Netscape

Netvousz

Newsvine

StumbleUpon

Slashdot

Tailrank

Technorati

Wink

Yahoo

Vote for Palm Decides Not to Address Treo Vulnerability:

Currently 8.00/10
1
2
3
4
5
6
7
8
9
10

Rating: 8.00 out of 1 vote(s) cast.

Response from: free cellphones (02/23/07 9:54am)

Palm is probably giving up the Palm OS as they are trying to build the next Linux based Treos.

Response from: Rico (02/24/07 5:45pm)

Actually, Palm no longer owns the OS itself. Access Co. is responsible for its development. But I know what you mean: Palm's initial decision was sound, because from a business POV, it doesn't make sense spending time and money to fix what's actually a minor bug.

Response from: high school musical2 lyrics

high school musical2 lyrics

Add your response to Palm Decides Not to Address Treo Vulnerability:

Name: *

Email: (will never be shown)*

URL:

(* marked fields are required)

Notify me if more comments appear?

Subscribe to The Smart PDA newsletter? (Newsletters are sent out weekly).

Remember me

Security Code: *
(Please help us to sort out spam.)

Please enter your comment here: (Sorry, no HTML is allowed - URLs will be made clickable automatically if you add http:// to your URL.)

We welcome your comments, however all comments are moderated. Offensive or off-topic comments will be deleted and not displayed.

Share It

Marketplace

mobile broadband

Use the search to look for other interesting posts

How it works | Vision & Calls | Cost

What's on

Have you seen what you can get with BT's digital tv?

BT Vision and Calls

Did you know that BT offers great deals in cheap mobile calls and cheap international phone calls? If you have a phone line with BT, come and see how we can reduce your bill of your home phone.

Get one of our broadband telephone packages to get even more entertainment at a great value.

How it works

With BT Vision now you can enjoy Freeview digital tv channels, radio channels and a great range of on demand entertainment.

Cost

Get a deal at a great value with our digital tv packages. Visit our website to find out more.

What you need

BT Phone line

BT Total Broadband

A TV and aerial

Freeview coverage

Speed test | Availability | Support

BT Total Broadband

Want fast, broadband wireless internet? Get BT Total Broadband.

Speed test

If you are unsure of how fast your line is, have a broadband speed test. You just have to enter your telephone number or postcode below. You will need a minimum of 2MB speed to be able to get BT Vision.

Enter phone number
or postcode

Availability

Want to see check broadband availability in your local area? Enter your postcode in our broadband postcode checker below and find out what is available to you.

Enter postcode

Support

BT offers great support with broadband services. Do you need broadband help? Contact us and we will be more than happy to help you.