CVE-2009-0305

Sažetak

Multiple stack-based buffer overflows in the Research in Motion RIM AxLoader ActiveX control in AxLoader.ocx and AxLoader.dll in BlackBerry Application Web Loader 1.0 allow remote attackers to execute arbitrary code via unspecified use of the (1) load or (2) loadJad method.

Reference

http://blackberry.com/btsc/KB16248
http://osvdb.org/51833
http://secunia.com/advisories/33847
http://www.kb.cert.org/vuls/id/131100
http://www.microsoft.com/technet/security/advisory/960715.mspx
http://www.securityfocus.com/bid/33663

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

17-02-2009 - 06:57

Objavljeno

10-02-2009 - 22:30