CVE-2008-3246

Unspecified vulnerability in the PDF distiller component in the BlackBerry Attachment Service in BlackBerry Unite! 1.0 SP1 (1.0.1) before bundle 36 and BlackBerry Enterprise Server 4.1 SP3 (4.1.3) through 4.1 SP5 (4.1.5) allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file attachment.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:blackberry:enterprise_server:4.1:sp3:*:*:*:*:*:*
cpe:2.3:a:blackberry:enterprise_server:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:blackberry:enterprise_server:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:blackberry:enterprise_server:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:blackberry:unite:1.0:sp1:*:*:*:*:*:*
cpe:2.3:a:blackberry:unite:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_enterprise_server:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_enterprise_server:4.1.5:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_enterprise_server_for_domino:*:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_enterprise_server_for_exchange:*:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_enterprise_server_for_novell_groupwise:*:*:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_unite:1.0:sp1:*:*:*:*:*:*
cpe:2.3:a:rim:blackberry_unite:1.0.1:*:*:*:*:*:*:*

History

21 Nov 2024, 00:48

Type Values Removed Values Added
References () http://secunia.com/advisories/31092 - Vendor Advisory () http://secunia.com/advisories/31092 - Vendor Advisory
References () http://secunia.com/advisories/31141 - () http://secunia.com/advisories/31141 -
References () http://www.blackberry.com/btsc/articles/635/KB15770_f.SAL_Public.html - () http://www.blackberry.com/btsc/articles/635/KB15770_f.SAL_Public.html -
References () http://www.blackberry.com/btsc/articles/660/KB15766_f.SAL_Public.html - () http://www.blackberry.com/btsc/articles/660/KB15766_f.SAL_Public.html -
References () http://www.kb.cert.org/vuls/id/289235 - US Government Resource () http://www.kb.cert.org/vuls/id/289235 - US Government Resource
References () http://www.securitytracker.com/id?1020505 - () http://www.securitytracker.com/id?1020505 -
References () http://www.vupen.com/english/advisories/2008/2108/references - () http://www.vupen.com/english/advisories/2008/2108/references -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/43840 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/43840 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/43843 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/43843 -

Information

Published : 2008-07-21 16:41

Updated : 2024-11-21 00:48


NVD link : CVE-2008-3246

Mitre link : CVE-2008-3246

CVE.ORG link : CVE-2008-3246


JSON object : View

Products Affected

rim

  • blackberry_enterprise_server
  • blackberry_enterprise_server_for_novell_groupwise
  • blackberry_unite
  • blackberry_enterprise_server_for_domino
  • blackberry_enterprise_server_for_exchange

blackberry

  • enterprise_server
  • unite
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')

NVD-CWE-noinfo