CVE-2009-0219
Published Jan 21, 2009
Last updated 16 years ago
Overview
- Description
- The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted data stream in a .pdf file.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-399
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4DDE9EAC-D9FF-47C2-A830-0316F74D822E"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F3B71789-C43D-4D75-9C49-71D9347EF321"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59C67945-B4C6-4159-8FF0-05227D46E282"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D2FE657D-6988-4A19-B0EC-8D9413AB7A5E"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_professional_software:4.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E3AB6DC-0733-4683-B495-2FF85923ACB8"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_unite:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9DC011EA-0F76-4554-B19D-3B93F7C1D774",
"versionEndIncluding": "1.0.3"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_unite:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3D4FFD7E-241B-458A-AB88-C4C06E47C017"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_unite:1.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C6120B4-CEE1-412B-9EE3-9F2B0BE690A1"
},
{
"criteria": "cpe:2.3:a:research_in_motion_limited:blackberry_unite:1.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A748FD0-2FED-4C8F-9693-ED16095E917A"
}
],
"operator": "OR"
}
]
}
]