1. Home
  2. CVE Database
  3. CVE-2009-3038
MEDIUM · 4.3

CVE-2009-3038

A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion (RIM) Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of servic...

Vulnerability Description

A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion (RIM) Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of service (Internet Explorer crash) by referencing the control's CLSID in the classid attribute of an OBJECT element.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:N/A:P
Confidentiality
NONE
Integrity
NONE
Availability
PARTIAL

Affected Products

VendorProductVersions
IbmLotus Notes ConnectorAll versions
RimBlackberry Desktop Manager5.0.0.11

References

FAQ

What is CVE-2009-3038?

CVE-2009-3038 is a vulnerability with a CVSS score of 4.3 (MEDIUM). A certain ActiveX control in lnresobject.dll 7.1.1.119 in the Research In Motion (RIM) Lotus Notes connector for BlackBerry Desktop Manager 5.0.0.11 allows remote attackers to cause a denial of servic...

How severe is CVE-2009-3038?

CVE-2009-3038 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2009-3038?

Check the references section above for vendor advisories and patch information. Affected products include: Ibm Lotus Notes Connector, Rim Blackberry Desktop Manager.