Description
Buffer overflow in the decompression algorithm in Research in Motion BlackBerry Enterprise Server 4.0 SP1 and earlier before 20050607 might allow remote attackers to execute arbitrary code via certain data packets.
References (5)
Core 5
Core References
Patch x_refsource_confirm
http://www.blackberry.com/btsc/articles/669/KB04075_f.SAL_Public.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/35241
Various Sources x_refsource_misc
http://blog2.lemondeinformatique.fr/management_du_si/2006/05/notre_ami_imad_.html
Various Sources x_refsource_misc
http://www.lemonde.fr/web/article/0%2C1-0%402-3208%2C36-777732%2C0.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2007/2419
Scores
EPSS
0.0325
EPSS Percentile
86.9%
Details
CWE
CWE-119
Status
published
Products (1)
rim/blackberry_enterprise_server
< 4.0_sp1
Published
Dec 31, 2005
Tracked Since
Feb 18, 2026