CVE-2005-2343

Credit:
The information has been provided by FX of Phenoelit.

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2005-2343

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* BlackBerry Enterprise Server 4.0 through 4.0 Service Pack 3 Hotfix 4

You are running BlackBerry Device Software prior to version 4.0.2. You go to a web site and attempt to download a Java Application Descriptor (JAD) file to your BlackBerry smartphone. If the JAD file is formatted to contain a long application name and vendor string (i.e., 256 or more characters), the browser appears to stop responding.

This does not affect other applications on the BlackBerry Device Software

Vendor Status:
Blackberry had issued a security update for this vulnerability

Patch Availability:
http://btsc.webapps.blackberry.com/btsc/viewdocument.do?noCount=true&externalId=KB04755&sliceId=1&dialogID=1991791&cmd=displayKC&docType=kc&stateId=0+0+1995080&ViewedDocsListHelper=com.kanisa.apps.common.BaseViewedDocsListHelperImpl

CVE Information:
CVE-2005-2343