Lucene search

[email protected]NVD:CVE-2009-2643

HistoryJul 28, 2009 - 7:30 p.m.

CVE-2009-2643

2009-07-2819:30:00

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.284 Low

EPSS

Percentile

96.9%

JSON

Multiple unspecified vulnerabilities in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.3 through 5.0 and BlackBerry Professional Software 4.1.4 allow user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .pdf file attachment, a different vulnerability than CVE-2008-3246 and CVE-2009-0219.

Affected configurations

NVD

Node

rimblackberry_enterprise_serverMatch4.1.3

rimblackberry_enterprise_serverMatch4.1.4

rimblackberry_enterprise_serverMatch4.1.5

rimblackberry_enterprise_serverMatch4.1.6

rimblackberry_enterprise_serverMatch4.1.6mr4

rimblackberry_enterprise_serverMatch5.0

rimblackberry_professional_softwareMatch4.1.4

References

secunia.com/advisories/35254

www.blackberry.com/btsc/KB18327

www.osvdb.org/54767

www.securityfocus.com/bid/35102

www.securitytracker.com/id?1022295

www.vupen.com/english/advisories/2009/1429

exchange.xforce.ibmcloud.com/vulnerabilities/50755

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

AI Score

Confidence

Low

0.284 Low

EPSS

Percentile

96.9%

JSON

Related for NVD:CVE-2009-2643

prion5 cvelist5 cve5 nvd4 nessus3