9.3

CVE-2009-2643

EPSS 6.93%
Published 28.07.2009 19:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Multiple unspecified vulnerabilities in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.3 through 5.0 and BlackBerry Professional Software 4.1.4 allow user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .pdf file attachment, a different vulnerability than CVE-2008-3246 and CVE-2009-0219.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Rim ≫ Blackberry Enterprise Server Version4.1.3

Rim ≫ Blackberry Enterprise Server Version4.1.4

Rim ≫ Blackberry Enterprise Server Version4.1.5

Rim ≫ Blackberry Enterprise Server Version4.1.6

Rim ≫ Blackberry Enterprise Server Version4.1.6 Updatemr4

Rim ≫ Blackberry Enterprise Server Version5.0

Rim ≫ Blackberry Professional Software Version4.1.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	6.93%	0.91

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

http://secunia.com/advisories/35254

Vendor Advisory

http://www.blackberry.com/btsc/KB18327

Patch

Vendor Advisory

http://www.osvdb.org/54767

http://www.securityfocus.com/bid/35102

http://www.securitytracker.com/id?1022295

http://www.vupen.com/english/advisories/2009/1429

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/50755

https://nvd.nist.gov/vuln/detail/CVE-2009-2643

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-2643

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-2643

EUVD