 |
|
|
Family: Gain root remotely --> Category: infos
BlackBerry Enterprise Server PNG Attachment Buffer Overflow Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks version number of BlackBerry Enterprise Server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows application is affected by a buffer overflow
vulnerability.
Description :
The version of BlackBerry Enterprise Server installed on the remote
host reportedly is affected by a heap-based buffer overflow that can
be triggered by a malformed PNG attachment. Exploitation of this
issue may cause the Attachment Service to stop responding or crash and
may even allow for the execute of arbitrary code subject to the
rights under which the application runs, generally
'Administrator'.
See also :
http://www.nessus.org/u?c10eb5db
Solution :
Install the appropriate service pack / hotfix as described in the
vendor advisory referenced above.
Threat Level:
Low / CVSS Base Score : 2.3
(AV:R/AC:L/Au:NR/C:N/I:P/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
|
|
|
|
