MitreCVE-2009-4778CVE-2009-4778
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
96.9%
Multiple unspecified vulnerabilities in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.3 through 4.1.7 and 5.0.0, and BlackBerry Professional Software 4.1.4, allow user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .pdf file attachment, a different vulnerability than CVE-2008-3246, CVE-2009-0176, CVE-2009-0219, CVE-2009-2643, and CVE-2009-2646.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| rim | blackberry_enterprise_server | 4.1.3 | cpe:2.3:a:rim:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:* |
| rim | blackberry_enterprise_server | 4.1.4 | cpe:2.3:a:rim:blackberry_enterprise_server:4.1.4:*:*:*:*:*:*:* |
| rim | blackberry_enterprise_server | 4.1.5 | cpe:2.3:a:rim:blackberry_enterprise_server:4.1.5:*:*:*:*:*:*:* |
| rim | blackberry_enterprise_server | 4.1.6 | cpe:2.3:a:rim:blackberry_enterprise_server:4.1.6:*:*:*:*:*:*:* |
| rim | blackberry_enterprise_server | 4.1.7 | cpe:2.3:a:rim:blackberry_enterprise_server:4.1.7:*:*:*:*:*:*:* |
| rim | blackberry_enterprise_server | 5.0.0 | cpe:2.3:a:rim:blackberry_enterprise_server:5.0.0:*:*:*:*:*:*:* |
| rim | blackberry_professional_software | 4.1.4 | cpe:2.3:a:rim:blackberry_professional_software:4.1.4:*:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
96.9%