CVE-2007-0323

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2007-0323 to a friend

New vulnerability?
New tool?
Tell us

Credit:

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2007-0323

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* BlackBerry Internet Service 2.0
* Microsoft Internet Explorer
* T-Mobile My E-mail

When using Internet Explorer to view the BlackBerry Internet Service or T-Mobile My E-mail web sites that use the TeamOn Import Object ActiveX control, and when trying to install and run the ActiveX control, the ActiveX control introduces the vulnerability to the system.

The TeamOn Import Object ActiveX control has the following properties:

* Publisher: Research In Motion
* File name: TOImport.dll
* Class identifier: 1D95A7C7-3282-4DB7-9A48-7C39CE152A19

Vendor Status:
Blackberry had issued a security update for this vulnerability

Patch Availability:
http://btsc.webapps.blackberry.com/btsc/viewdocument.do?noCount=true&externalId=KB13142&sliceId=1&cmd=displayKC&dialogID=24842491&docType=kc&stateId=1+0+24844362&ViewedDocsListHelper=com.kanisa.apps.common.BaseViewedDocsListHelperImpl

CVE Information:
CVE-2007-0323

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus