|
Feeds -
Exploits
|
|
Written by Andre Protas and Greg Linares of eEye Research and Chris Weber of Casaba Security
|
|
Wednesday, 18 February 2009 20:33 |
BlackBerry Application Web Loader ActiveX Control Remote Buffer Overflow Vulnerability
-\\Bugtraq ID:
33663
-\\Class:
Boundary Condition Error
-\\CVE:
CVE-2009-0305
-\\Remote:
Yes
-\\Local:
No
-\\Published:
Feb 10 2009 12:00AM
-\\Updated:
Feb 18 2009 05:37PM
-\\Credit:
Andre Protas and Greg Linares of eEye Research and Chris Weber of Casaba Security
-\\Vulnerable:
Research In Motion BlackBerry Application Web Loader 1.0
-\\Not Vulnerable:
Research In Motion BlackBerry Application Web Loader 1.1
-\\Discussion
Research in Motion BlackBerry Application Web Loader ActiveX control is prone to a remote stack-based buffer-overflow vulnerability.
An attacker can exploit this issue to execute arbitrary code in the context of an application using the ActiveX control (typically Internet Explorer). Failed attacks will likely cause denial-of-service conditions.
BlackBerry Application Web Loader 1.0 is vulnerable.
-\\Exploit(s)/PoC(s):
A working commercial exploit is available through VUPEN Security - Exploit and PoCs Service. This exploit is not otherwise publicly available or known to be circulating in the wild.
-\\Solution
The vendor has released updates. Please contact the vendor for details.
-\\References(s)
--Microsoft Knowledge Base Article 240797
http://support.microsoft.com/kb/24079 (Microsoft)
--Research In Motion Homepage
http://www.rim.net (Research In Motion)
--VU#131100: RIM BlackBerry Application Web Loader ActiveX stack buffer overflow
http://www.kb.cert.org/vuls/id/13110 (US-CERT)
--Microsoft Security Advisory 960715
http://www.microsoft.com/technet/security/advisory/960715.msp (Microsoft)
--Vulnerability exists in BlackBerry Application Web Loader ActiveX control
http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB1624 (Research In Motion)
|
