CVE-2006-6286 : Palm Desktop 4.1.4 and earlier stores user data with weak permissions under the

Palm Desktop 4.1.4 and earlier stores user data with weak permissions under the application directory, which allows local users to obtain sensitive information (address books, calendar files, and todo lists of other users) via unspecified vectors. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.

Published 2006-12-04 11:28:00

Updated 2025-04-09 00:30:58

Source MITRE

View at NVD, CVE.org

Products affected by CVE-2006-6286

Palm » Palm Desktop
Versions up to, including, (<=) 4.1.4
cpe:2.3:a:palm:palm_desktop:*:*:*:*:*:*:*:*
Matching versions
Palm » Palm Desktop » Version: 4.0b76
cpe:2.3:a:palm:palm_desktop:4.0b76:*:*:*:*:*:*:*
Matching versions
Palm » Palm Desktop » Version: 4.0b77
cpe:2.3:a:palm:palm_desktop:4.0b77:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2006-6286

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 12 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2006-6286

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
1.7	LOW	AV:L/AC:L/Au:S/C:P/I:N/A:N	3.1	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

References for CVE-2006-6286

Jump to

Vulnerability Details : CVE-2006-6286

Products affected by CVE-2006-6286

Exploit prediction scoring system (EPSS) score for CVE-2006-6286

CVSS scores for CVE-2006-6286

References for CVE-2006-6286