CVSS: 9.3EPSS: 3%CPEs: 9EXPL: 0CVE-2009-0219
https://notcve.org/view.php?id=CVE-2009-0219
21 Jan 2009 — The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted data stream in a .pdf file. El PDF distiller en el servicio Attachment en Research in Motion (RIM) BlackBerry Enterprise Server (BES) v4.1.3 hasta v4.1.6, BlackB... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=766 • CWE-399: Resource Management Errors •
CVSS: 9.3EPSS: 5%CPEs: 9EXPL: 0CVE-2009-0176
https://notcve.org/view.php?id=CVE-2009-0176
20 Jan 2009 — Multiple heap-based buffer overflows in the PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 allow user-assisted remote attackers to execute arbitrary code via (1) a crafted stream in a .pdf file, related to "symWidths"; or (2) a crafted data stream in a .pdf file, related to "bitmaps." Múltiples desbordamientos de búfer basados en montículo en PDF d... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=764 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •