Nov
26
2010
Security experts unearth unpleasant flaws in webOS
Researchers from security firm SecTheory have described a handful of flaws in webOS , saying that the platform — by its very nature — is more prone to these sorts of things than its major competitors because Palm puts web technologies like JavaScript closer to webOS’ core where system functions are readily accessible. At least one of the flaws, involving a data field in the Contacts app that can be exploited to run arbitrary code, has already been fixed in webOS 2.0 — but the others are apparently still open, including a cross-site scripting problem, some sort of floating-point overflow issue, and a denial-of-service vector
More:
Security experts unearth unpleasant flaws in webOS
