Sharp: Security Vulnerabilities
The FTP service in Zaurus PDAs SL-5000D and SL-5500 does not require authentication, which allows remote attackers to access the file system as root.
CVSS Score
10.0
EPSS Score
0.018
Published
2002-12-31
Sharp Zaurus PDA SL-5000D and SL-5500 uses a salt of "A0" to encrypt the screen-locking password as stored in the Security.conf file, which makes it easier for local users to guess the password via brute force methods.
CVSS Score
5.5
EPSS Score
0.001
Published
2002-12-31
Page 4