Palm Releases Treo Security Updates

Posted By: Ryan Kairer Saturday, May 19, 2007 3:58:02 PM

Palm has released security updates for the Treo 650, 680 and 700p to patch the Treo "find vulnerability" made public earlier this year.

When the Treo password protection is enabled, the password protection can be partially circumvented by running the Find feature while on the "Make Emergency Call" screen. This would allow a malicious user to view a list of search results from the Treo's built-in applications such as Contacts, Calendar, Tasks, Memos and Email. The malicious user cannot access or display anything beyond the search results list.

The update for each device is available from Palm's support downloads page. It is a 142kb prc file that runs an installer and soft resets the device.

Article Comments

 (4 comments)

The following comments are owned by whoever posted them. PalmInfocenter is not responsible for them in any way.
Please Login or register here to add your comments.

Start a new Comment Down

Endless Reset Loop

larock @ 5/20/2007 2:23:43 PM # Q
Well, I installed the patch to my Verizon 650 and it's now in an endless reset loop. What fun.
RE: Endless Reset Loop
Tuckermaclain @ 5/21/2007 10:17:40 AM # Q
Try resetting it with the scroll button in the up position. Sometimes that helps me avoid the hard reset. What do they call it? I think it was a "warm" reset.
Reply to this comment

Treo is getting better

hannaheloise @ 5/21/2007 8:00:00 AM # Q
I am also concerned about the security feature of iPhone..it seems Treo is making itself better and better day by day, cant wait to see the war of smartphones in June this year.
RE: Treo is getting better
linds @ 5/22/2007 7:17:54 PM # Q
engadget wrote an article about verizon having an iphone killer in the mill

Reply to this comment
Start a New Comment Thread Top

Account

Register Register | Login Log in
user:
pass:

Latest Comments

  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST((SELECT/**/CASE/**/IS_SRVROLEMEM
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST((SELECT/**/CASE/**/IS_SRVROLEMEM
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST((SELECT/**/CASE/**/IS_SRVROLEMEM
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000
  • My comments --1' OR UNICODE(SUBSTRING((SELECT/**/ISNULL(CAST(db_name()/**/AS/**/NVARCHAR(4000