Unofficial Fix For Recent Treo Security Hole
PIC reader and Palm OS developer Donald Kirker has released a patch for the Treo security vulnerability recently disclosed by Symantec. Previously, one could bypass the Treo's security lockout while on a call and use the Find application to search the databases for public records, potentially exposing sensitive information. The new patch disables the Find application while the device is locked, protecting your data from prying eyes.
Please note this is an unofficial patch, created by an independent developer and is not supported by Palm in any way. Use at your own risk!
Article Comments
(14 comments)
The following comments are owned by whoever posted them. PalmInfocenter is not responsible for them in any way.
Please Login or register here to add your comments.
nice work, Palm
I guess once Palm poops the devices out the door, we're on our own. I guess you can't expect much support on a simple $600.00-700.00 phone.
Warm reset still defeats this
RE: Warm reset still defeats this
What Palm really needs to do is add a couple lines of code to their button handler.
RE: Warm reset still defeats this
RE: Warm reset still defeats this
RE: Warm reset still defeats this
Maybe I will throw up a small site.
RE: Warm reset still defeats this
Palm aint that bad
If a developer releases a free fix and says, " I'm not responsible"
Brainiac
don't worry....
Serendipitous security fix
Tested on an unlocked Treo 680 on T-Mobile with FindHack 4.0.6
Joel
Latest Comments
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST((SELECT/**/CASE/**/IS_SRVROLEMEM
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST((SELECT/**/CASE/**/IS_SRVROLEMEM
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST((SELECT/**/CASE/**/IS_SRVROLEMEM
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
- My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
:)
http://www.tabletgear.com
http://www.beamtest.com