Vulnerability Details : CVE-2001-1006
Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA does not encrypt sensitive files and relies solely on its password feature to restrict access, which allows an attacker to read the files using a different application.
Exploit prediction scoring system (EPSS) score for CVE-2001-1006
Probability of exploitation activity in the next 30 days: 0.42%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 72 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2001-1006
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2001-1006
-
http://www.securityfocus.com/archive/1/210067
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/3232
Vendor Advisory
Products affected by CVE-2001-1006
- cpe:2.3:a:starfish:truesync_desktop:2.0b:*:*:*:*:*:*:*