Palm HotSync Manager is vulnerable to Denial of Service attack
29 Oct. 1999
HotSync Manager provides network synchronization between the Palm Desktop and a remote Palm PDA that is connected via the Internet. This feature is used to backup the information from the Palm PDA to a secure location. However, using HotSync Manager over the network exposes it to an attack, where anyone with network connection to the station running HotSync Manager can crash the application and possibly execute arbitrary code.
3Com's Palm computing team is aware of the problem and will fix this issue in the next release of the HotSync Manager.
HotSync Manager 3.0.4 under Windows 98
Non vulnerable systems:
HotSync Manager 3.0.4 under Windows 2000
By connecting to the HotSync Manager's TCP listening port (TCP port 14238), and sending a large amount of data followed by a newline, it is possible to crash the HotSync Manager.
The following Nessus Plugin can be used to test this:
# This script was written by Noam Rathaus <email@example.com>
# See the Nessus Scripts License for details
name["english"] = "HotSync Manager Denial of Service attack";
desc["english"] = "It is possible to cause HotSync Manager to crash by sending a few bytes
of garbage into its listening port TCP 14238.
Solution: Block those ports from outside communication
Risk factor : Low";
summary["english"] = "HotSync Manager Denial of Service attack";