CVSS: 9.8EPSS: 17%CPEs: 2EXPL: 0CVE-2009-0305
https://notcve.org/view.php?id=CVE-2009-0305
10 Feb 2009 — Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allow remote attackers to execute arbitrary code via unspecified use of the (1) load or (2) loadJad method. Múltiples desbordamientos de búfer en la región stack de la memoria en el control ActiveX de Research in Motion RIM AxLoader en el archivo AxLoader.ocx y la biblioteca AxLoader.dll en BlackBerry Application Web Loader versión 1.0 permite... • http://blackberry.com/btsc/KB16248 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 3%CPEs: 9EXPL: 0CVE-2009-0219
https://notcve.org/view.php?id=CVE-2009-0219
21 Jan 2009 — The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted data stream in a .pdf file. El PDF distiller en el servicio Attachment en Research in Motion (RIM) BlackBerry Enterprise Server (BES) v4.1.3 hasta v4.1.6, BlackB... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=766 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 5%CPEs: 9EXPL: 0CVE-2009-0176
https://notcve.org/view.php?id=CVE-2009-0176
20 Jan 2009 — Multiple heap-based buffer overflows in the PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 allow user-assisted remote attackers to execute arbitrary code via (1) a crafted stream in a .pdf file, related to "symWidths"; or (2) a crafted data stream in a .pdf file, related to "bitmaps." Múltiples desbordamientos de búfer basados en montículo en PDF d... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=764 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3442
https://notcve.org/view.php?id=CVE-2007-3442
27 Jun 2007 — Format string vulnerability on the Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 allows remote attackers to cause a denial of service (blocked call reception and calling) via format string specifiers in an SIP INVITE message that lacks a host name in the Contact header. Vulnerabilidad de cadena de formato en Research de Motion BlackBerry 7270 anterior a 4.0 SP1 Bundle 108 permite a atacantes remotos provocar una denegación de servicio (recepción y establecimiento de llamadas bloqueadas) media... • http://osvdb.org/37646 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2007-3443
https://notcve.org/view.php?id=CVE-2007-3443
27 Jun 2007 — The Research in Motion BlackBerry 7270 before 4.0 SP1 Bundle 108 does not properly manage transaction states, which allows remote attackers to cause a denial of service (temporary device hang) by sending a certain SIP INVITE message, but not providing an ACK when the call is answered. The Research en Motion BlackBerry 7270 anterior a 4.0 SP1 Bundle 108 no maneja adecuadamente los estados de las transacciones, lo cual permite a atacantes remotos provocar una denegación de servicio (cuelgue temporal del dispo... • http://osvdb.org/37647 •