CVE-2009-0305
https://notcve.org/view.php?id=CVE-2009-0305
Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allow remote attackers to execute arbitrary code via unspecified use of the (1) load or (2) loadJad method. Múltiples desbordamientos de búfer en la región stack de la memoria en el control ActiveX de Research in Motion RIM AxLoader en el archivo AxLoader.ocx y la biblioteca AxLoader.dll en BlackBerry Application Web Loader versión 1.0 permiten a los atacantes remotos ejecutar código arbitrario mediante el uso no especificado de la (1) carga o (2) loadJad. • http://blackberry.com/btsc/KB16248 http://osvdb.org/51833 http://secunia.com/advisories/33847 http://www.kb.cert.org/vuls/id/131100 http://www.microsoft.com/technet/security/advisory/960715.mspx http://www.securityfocus.com/bid/33663 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2009-0219
https://notcve.org/view.php?id=CVE-2009-0219
The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted data stream in a .pdf file. El PDF distiller en el servicio Attachment en Research in Motion (RIM) BlackBerry Enterprise Server (BES) v4.1.3 hasta v4.1.6, BlackBerry Professional Software v4.1.4, y BlackBerry Unite! anteriores a v1.0.3 bundle 28 realiza operaciones de borrado en punteros sin inicializar, lo que permite a atacantes remotos ayudados por el usuario ejecutar código de su elección a través de una secuencia de datos manipulada en un fichero .pdf. • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=766 http://secunia.com/advisories/33534 http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17118 http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17119 http://www.securityfocus.com/bid/33250 http://www.securitytracker.com/id?1021559 • CWE-399: Resource Management Errors •
CVE-2009-0176
https://notcve.org/view.php?id=CVE-2009-0176
Multiple heap-based buffer overflows in the PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 allow user-assisted remote attackers to execute arbitrary code via (1) a crafted stream in a .pdf file, related to "symWidths"; or (2) a crafted data stream in a .pdf file, related to "bitmaps." Múltiples desbordamientos de búfer basados en montículo en PDF distiller en el Servicio de Adjuntar en Research in Motion (RIM) Blackberry Enterprise Server (BES) v4.1.3 hasta 4.1.6, Blackberry Professional Software v4.1.4, y blackberry Unite! anteriores a v1.0.3 bundle 28, permite a atacantes remotos asistidos por usuarios, ejecutar código de su elección a a través (1)cadena manípulada en un fichero .PDF, relativo a "symWidths"; o (2) a cadenas de datos manipulada en un fichero .PDF, relativo a "bitmaps". • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=764 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=765 http://secunia.com/advisories/33534 http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17118 http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB17119 http://www.securityfocus.com/bid/33224 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2007-3443
https://notcve.org/view.php?id=CVE-2007-3443
The Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 does not properly manage transaction states, which allows remote attackers to cause a denial of service (temporary device hang) by sending a certain SIP INVITE message, but not providing an ACK when the call is answered. The Research en Motion BlackBerry 7270 anterior a 4.0 SP1 Bundle 108 no maneja adecuadamente los estados de las transacciones, lo cual permite a atacantes remotos provocar una denegación de servicio (cuelgue temporal del dispositivo) enviando cierto mensaje SIP INVITE, pero que no proporciona un ACK cuando la llamada es contestada. • http://osvdb.org/37647 http://secunia.com/advisories/25824 http://www.blackberry.com/btsc/articles/220/KB12705_f.SAL_Public.html http://www.kb.cert.org/vuls/id/324841 http://www.securityfocus.com/bid/24545 http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=213& https://exchange.xforce.ibmcloud.com/vulnerabilities/35075 •
CVE-2007-3442
https://notcve.org/view.php?id=CVE-2007-3442
Format string vulnerability on the Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 allows remote attackers to cause a denial of service (blocked call reception and calling) via format string specifiers in an SIP INVITE message that lacks a host name in the Contact header. Vulnerabilidad de cadena de formato en Research de Motion BlackBerry 7270 anterior a 4.0 SP1 Bundle 108 permite a atacantes remotos provocar una denegación de servicio (recepción y establecimiento de llamadas bloqueadas) mediante especificadores de formato en un mensaje SIP INVITE que carece de un nombre de host en la cabecera Contact. • http://osvdb.org/37646 http://secunia.com/advisories/25824 http://www.blackberry.com/btsc/articles/218/KB12707_f.SAL_Public.html http://www.kb.cert.org/vuls/id/619465 http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=208& https://exchange.xforce.ibmcloud.com/vulnerabilities/35077 •