Vulnerability Description
Multiple buffer overflows in the PDF Distiller in the BlackBerry Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server 4.1.3 through 5.0.2, and Enterprise Server Express 5.0.1 and 5.0.2, allow remote attackers to execute arbitrary code via a crafted PDF file.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rim | Blackberry Enterprise Server | 4.1.3 |
| Rim | Blackberry Enterprise Server Express | 5.0.1 |
Related Weaknesses (CWE)
References
- http://osvdb.org/70393
- http://secunia.com/advisories/42882Vendor Advisory
- http://www.blackberry.com/btsc/KB25382Vendor Advisory
- http://www.securityfocus.com/bid/45753
- http://www.securitytracker.com/id?1024953
- http://www.vupen.com/english/advisories/2011/0081Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64621
- http://osvdb.org/70393
- http://secunia.com/advisories/42882Vendor Advisory
- http://www.blackberry.com/btsc/KB25382Vendor Advisory
- http://www.securityfocus.com/bid/45753
- http://www.securitytracker.com/id?1024953
- http://www.vupen.com/english/advisories/2011/0081Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/64621
FAQ
What is CVE-2010-2604?
CVE-2010-2604 is a vulnerability with a CVSS score of 9.3 (HIGH). Multiple buffer overflows in the PDF Distiller in the BlackBerry Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server 4.1.3 through 5.0.2, and Enterprise Server Expres...
How severe is CVE-2010-2604?
CVE-2010-2604 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2604?
Check the references section above for vendor advisories and patch information. Affected products include: Rim Blackberry Enterprise Server, Rim Blackberry Enterprise Server Express.