CVE-2009-0176

EUVD-2009-0185

20.01.2009, 16:00

Multiple heap-based buffer overflows in the PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 allow user-assisted remote attackers to execute arbitrary code via (1) a crafted stream in a .pdf file, related to "symWidths"; or (2) a crafted data stream in a .pdf file, related to "bitmaps."

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	9.3 UNKNOWN	NETWORK	MEDIUM		AV:N/AC:M/Au:N/C:C/I:C/A:C

Base Score

CVSS 3.x

EPSS Score

Percentile: 90%

Affected Products (NVD)

Vendor	Product	Version
research_in_motion_limited	blackberry_enterprise_server	4.1.3
research_in_motion_limited	blackberry_enterprise_server	4.1.4
research_in_motion_limited	blackberry_enterprise_server	4.1.5
research_in_motion_limited	blackberry_enterprise_server	4.1.6
research_in_motion_limited	blackberry_professional_software	4.1.4
research_in_motion_limited	blackberry_unite	𝑥 ≤ 1.0.3
research_in_motion_limited	blackberry_unite	1.0
research_in_motion_limited	blackberry_unite	1.0.1
research_in_motion_limited	blackberry_unite	1.0.2

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=764

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=765

http://secunia.com/advisories/33534

http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17118

http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17119

http://www.securityfocus.com/bid/33224

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=764

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=765

http://secunia.com/advisories/33534

http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17118

http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17119

http://www.securityfocus.com/bid/33224