Lucene search

[email protected]CVE-2005-4848

HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-4848

2005-12-3105:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2005-4848

buffer overflow

blackberry enterprise server

remote code execution

nvd

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.092 Low

EPSS

Percentile

94.6%

JSON

Buffer overflow in the decompression algorithm in Research in Motion BlackBerry Enterprise Server 4.0 SP1 and earlier before 20050607 might allow remote attackers to execute arbitrary code via certain data packets.

CPENameOperatorVersion
rim:blackberry_enterprise_serverrim blackberry enterprise serverle4.0_sp1

CPE	Name	Operator	Version
rim:blackberry_enterprise_server	rim blackberry enterprise server	le	4.0_sp1

References

blog2.lemondeinformatique.fr/management_du_si/2006/05/notre_ami_imad_.html

www.blackberry.com/btsc/articles/669/KB04075_f.SAL_Public.html

www.lemonde.fr/web/article/0%2C1-0%402-3208%2C36-777732%2C0.html

www.vupen.com/english/advisories/2007/2419

exchange.xforce.ibmcloud.com/vulnerabilities/35241

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.092 Low

EPSS

Percentile

94.6%

JSON