CVSS: 4.3EPSS: 2%CPEs: 13EXPL: 0CVE-2010-2599
https://notcve.org/view.php?id=CVE-2010-2599
Unspecified vulnerability in Research In Motion (RIM) BlackBerry Device Software before 6.0.0 allows remote attackers to cause a denial of service (browser hang) via a crafted web page. Vulnerabilidad no especificada en BlackBerry Device Software anterior a v6.0.0 de Research In Motion (RIM) permite a atacantes remotos provocar una denegación de servicio (navegador se bloquea) a través de una página web manipulada. • http://blog.tehtri-security.com/2011/01/blackhat-dc-2011-inglourious-hackerds.html http://osvdb.org/70404 http://www.blackberry.com/btsc/KB24841 http://www.securityfocus.com/archive/1/515860/100/0/threaded http://www.securityfocus.com/bid/45754 http://www.securitytracker.com/id?1024952 http://www.vupen.com/english/advisories/2011/0082 https://exchange.xforce.ibmcloud.com/vulnerabilities/64622 •
CVSS: 7.6EPSS: 0%CPEs: 17EXPL: 0CVE-2010-2601
https://notcve.org/view.php?id=CVE-2010-2601
Multiple buffer overflows in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.7 and earlier and 5.0.0 through 5.0.2, and BlackBerry Professional Software 4.1.4 and earlier, allow user-assisted remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted PDF document. Múltiples desbordamientos de búfer en PDF distiller en el componente Attachment Service en Research In Motion (RIM) BlackBerry Enterprise Server (BES) software v4.1.7 and earlier y v5.0.0 hasta v5.0.2, y BlackBerry Professional Software v4.1.4 and earlier, permite a atacantse asistidos por usuarios remotos causar una denegacion de servicio y probablemente ejecutar código de su elección a través de un documento PDF manipulado. • http://blackberry.com/btsc/KB24547 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 1%CPEs: 8EXPL: 0CVE-2010-2600
https://notcve.org/view.php?id=CVE-2010-2600
Untrusted search path vulnerability in BlackBerry Desktop Software before 6.0.0.47 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as a file that is processed by Blackberry. Vulnerabilidad ruta de búsqueda no confiable en BlackBerry Desktop Software anterior a v6.0.0.47 permite a los usuarios locales, y posiblemente a los atacantes remotos, ejecutar código a su elección y y producir un ataque de secuestro de DLL, a través de un troyano DLL que está ubicado en la misma carpeta que un fichero que sea procesado por Blackberry. • http://secunia.com/advisories/41346 http://secunia.com/advisories/41398 http://www.blackberry.com/btsc/KB24242 http://www.securityfocus.com/bid/43139 http://www.securitytracker.com/id?1024425 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6843 •
CVSS: 4.3EPSS: 9%CPEs: 2EXPL: 0CVE-2007-3444
https://notcve.org/view.php?id=CVE-2007-3444
The Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83 allows remote attackers to cause a denial of service (blocked call reception) via a malformed SIP invite message, possibly related to multiple format string specifiers in the From field, a spoofed source IP address, and limitations of the function stack frame. The Research in Motion BlackBerry 7270 con 4.0 SP1 Bundle 83 permite a atacantes remotos provocar una denegación de servicio (bloqueo de recepción de llamadas) mediante un mensaje de invitación SIP • http://osvdb.org/37648 http://secunia.com/advisories/25824 http://www.blackberry.com/btsc/articles/225/KB12700_f.SAL_Public.html http://www.kb.cert.org/vuls/id/785257 http://www.securityfocus.com/bid/24548 http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=211& https://exchange.xforce.ibmcloud.com/vulnerabilities/35074 •
CVSS: 2.6EPSS: 3%CPEs: 23EXPL: 0CVE-2005-2343
https://notcve.org/view.php?id=CVE-2005-2343
Research in Motion (RIM) BlackBerry Handheld web browser for BlackBerry Handheld before 4.0.2 allows remote attackers to cause a denial of service (hang) via a Java Application Description (JAD) file with a long application name and vendor string, which prevents a browser dialog from being properly dismissed. • http://securitytracker.com/id?1015428 http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791 http://www.kb.cert.org/vuls/id/829400 http://www.securityfocus.com/bid/16099 http://www.vupen.com/english/advisories/2006/0011 •