Insecure Storage of PIN in Pointsec for PalmOS

Insecure Storage of PIN in Pointsec for PalmOS

CVE-2002-2122 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

Pointsec before 1.2 for PalmOS stores a user's PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory.

Learn more about our User Device Pen Test.