Vulnerability Description
Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allow remote attackers to execute arbitrary code via unspecified use of the (1) load or (2) loadJad method.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Research In Motion Limited | Blackberry Application Web Loader | 1.0 |
| Microsoft | Internet Explorer | All versions |
Related Weaknesses (CWE)
References
- http://blackberry.com/btsc/KB16248PatchVendor Advisory
- http://osvdb.org/51833
- http://secunia.com/advisories/33847Vendor Advisory
- http://www.kb.cert.org/vuls/id/131100US Government Resource
- http://www.microsoft.com/technet/security/advisory/960715.mspx
- http://www.securityfocus.com/bid/33663
- http://blackberry.com/btsc/KB16248PatchVendor Advisory
- http://osvdb.org/51833
- http://secunia.com/advisories/33847Vendor Advisory
- http://www.kb.cert.org/vuls/id/131100US Government Resource
- http://www.microsoft.com/technet/security/advisory/960715.mspx
- http://www.securityfocus.com/bid/33663
FAQ
What is CVE-2009-0305?
CVE-2009-0305 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allow remote attackers to execute...
How severe is CVE-2009-0305?
CVE-2009-0305 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-0305?
Check the references section above for vendor advisories and patch information. Affected products include: Research In Motion Limited Blackberry Application Web Loader, Microsoft Internet Explorer.