9 matches found
BlackBerry Enterprise Server 4.0/4.1 MDS Connection Service Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/34573/info BlackBerry Enterprise Server MDS Connection Service is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute...
BlackBerry Enterprise Server vulnerable to malicious image file
BlackBerry Enterprise Server vulnerable to malicious image file There are remotely and easily exploitable vulnerabilities in the BlackBerry Enterprise Server that could allow an attacker to gain access to the server by simply sending a malicious image file to a user's BlackBerry device. The...
Severe Remote Flaw Fixed in BlackBerry Enterprise Server
There are remotely and easily exploitable vulnerabilities in the BlackBerry Enterprise Server that could allow an attacker to gain access to the server by simply sending a malicious image file to a user’s BlackBerry device. The vulnerabilities are in several version of BES for Exchange, Lotus...
BlackBerry Enterprise Server PNG and TIFF Image Processing Vulnerabilities (KB27244)
The version of BlackBerry Enterprise Server on the remote host reportedly contains multiple remote code execution vulnerabilities in its image processing library : - An unspecified error within the BlackBerry MDS Connection Service when processing PNG and TIFF images on a web page being viewed on...
RIM Releases Security Advisory for BlackBerry Enterprise Server
RIM has released a security advisory to address a vulnerability in the BlackBerry MDS Connection Service and BlackBerry Messaging Agent for the BlackBerry Enterprise Server. The vulnerability may allow an attacker to execute arbitrary code or gain unauthorized access to the BlackBerry Enterprise...
BlackBerry Enterprise Server MDS Connection Service XSS
The remote host is running the BlackBerry Enterprise Server MDS Connection Service. The installed version is affected by cross-site scripting vulnerabilities involving the 'customDate', 'interval', 'lastCustomInterval', 'lastIntervalLength', 'nextCustomInterval', 'nextIntervalLength', 'action',...
CVE-2009-0307
Cross-site scripting XSS vulnerability in the "Customize Statistics Page" admin/statistics/ConfigureStatistics in the MDS Connection Service in Research in Motion RIM BlackBerry Enterprise Server BES before 4.1.6 MR5 allows remote attackers to inject arbitrary web script or HTML via the 1...
BlackBerry Enterprise Server 4.04.1 - MDS Connection Service Cross-Site Scripting
BlackBerry Enterprise Server 4.04.1 - MDS Connection Service Cross-Site Scripting source: https://www.securityfocus.com/bid/34573/info BlackBerry Enterprise Server MDS Connection Service is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. ...
BlackBerry Enterprise Server 4.0/4.1 - MDS Connection Service Cross-Site Scripting
source: https://www.securityfocus.com/bid/34573/info BlackBerry Enterprise Server MDS Connection Service is prone to a cross-site scripting vulnerability because it fails to adequately sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browse...