|
|
|
|
| |
Credit:
The information has been provided by Laurent Oudot.
|
| |
Vulnerable Systems:
*BlackBerry Device Software versions earlier than 6.0.0
Immune Systems:
*BlackBerry Desktop Software
*BlackBerry Enterprise Server Software
This advisory relates to a BlackBerry Device Software vulnerability that could allow an attacker to maliciously craft a web page such that, when the BlackBerry device user views the page on a device running the affected BlackBerry Device Software, the browser application becomes unresponsive. The BlackBerry device subsequently terminates the browser, and the browser eventually restarts and displays an error message. Successful exploitation of this issue relies on the user viewing the maliciously crafted web page on a device running the affected BlackBerry Device Software. The impact is limited to a partial Denial of Service (DoS) in the browser application in use on the BlackBerry device.
Vendor Status:
Blackberry had issued an update for this vulnerability
Patch Availability:
http://btsc.webapps.blackberry.com/btsc/viewdocument.do?externalId=KB24841&sliceId=1&cmd=displayKC&docType=kc&noCount=true&ViewedDocsListHelper=com.kanisa.apps.common.BaseViewedDocsListHelperImpl
CVE Information:
CVE-2010-2599
|
|
|
|
|
