CVE-2008-3246: Code Injection
First published: Mon Jul 21 2008(Updated: )
Unspecified vulnerability in the PDF distiller component in the BlackBerry Attachment Service in BlackBerry Unite! 1.0 SP1 (1.0.1) before bundle 36 and BlackBerry Enterprise Server 4.1 SP3 (4.1.3) through 4.1 SP5 (4.1.5) allows user-assisted remote attackers to execute arbitrary code via a crafted PDF file attachment.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Blackberry Enterprise Server | =4.1-sp3 | |
| Blackberry Enterprise Server | =4.1.3 | |
| Blackberry Enterprise Server | =4.1.4 | |
| Blackberry Enterprise Server | =4.1.5 | |
| BlackBerry Unite | =1.0-sp1 | |
| BlackBerry Unite | =1.0.1 | |
| Rim Blackberry Enterprise Server | =4.1.3 | |
| Rim Blackberry Enterprise Server | =4.1.4 | |
| Rim Blackberry Enterprise Server | =4.1.5 | |
| Rim Blackberry Enterprise Server For Domino | ||
| Rim Blackberry Enterprise Server For Exchange | ||
| Rim Blackberry Enterprise Server For Novell Groupwise | ||
| Rim Blackberry Unite | =1.0-sp1 | |
| Rim Blackberry Unite | =1.0.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/31092
- http://secunia.com/advisories/31141
- http://www.blackberry.com/btsc/articles/635/KB15770_f.SAL_Public.html
- http://www.blackberry.com/btsc/articles/660/KB15766_f.SAL_Public.html
- http://www.kb.cert.org/vuls/id/289235
- http://www.securitytracker.com/id?1020505
- http://www.vupen.com/english/advisories/2008/2108/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43840
- https://exchange.xforce.ibmcloud.com/vulnerabilities/43843
- collector/nvd-index
- collector/nvd-historical
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/blackberry
- canonical/blackberry enterprise server
- version/blackberry enterprise server/4.1-sp3
- version/blackberry enterprise server/4.1.3
- version/blackberry enterprise server/4.1.4
- version/blackberry enterprise server/4.1.5
- canonical/blackberry unite
- version/blackberry unite/1.0-sp1
- version/blackberry unite/1.0.1
- vendor/rim
- canonical/rim blackberry enterprise server
- version/rim blackberry enterprise server/4.1.3
- version/rim blackberry enterprise server/4.1.4
- version/rim blackberry enterprise server/4.1.5
- canonical/rim blackberry enterprise server for domino
- canonical/rim blackberry enterprise server for exchange
- canonical/rim blackberry enterprise server for novell groupwise
- canonical/rim blackberry unite
- version/rim blackberry unite/1.0-sp1
- version/rim blackberry unite/1.0.1