{ "id": "CVE-2006-0761", "sourceIdentifier": "cve@mitre.org", "published": "2006-02-18T02:02:00.000", "lastModified": "2018-10-19T15:46:25.507", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "Buffer overflow in BlackBerry Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server 2.2 and 4.0 before SP3 Hotfix 4 for IBM Lotus Domino, 3.6 before SP7 and 5.0 before SP3 Hotfix 3 for Microsoft Exchangem, and 4.0 for Novell GroupWise before SP3 Hotfix 1 might allow user-assisted remote attackers to execute arbitrary code on the server via a crafted Microsoft Word document that is opened on a wireless device." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "HIGH", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 5.1 }, "baseSeverity": "MEDIUM", "exploitabilityScore": 4.9, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": true } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "D89945C2-883A-4388-8EEB-52C774397A8F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:2.2_sp2:*:*:*:*:*:*:*", "matchCriteriaId": "D448BA87-13CB-461E-B5FB-7A25617E2727" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:2.2_sp2a:*:*:*:*:*:*:*", "matchCriteriaId": "B49A5797-A1D8-4EBE-B245-7C5D8DE202CA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:2.2_sp3a:*:*:*:*:*:*:*", "matchCriteriaId": "5E87805B-85B0-4004-BE3C-BD6A606603DA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:2.2_sp4:*:*:*:*:*:*:*", "matchCriteriaId": "66E80C5A-50B5-4AB8-B3C5-9EDC1CE6D691" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:2.2_sp4_hotfix2:*:*:*:*:*:*:*", "matchCriteriaId": "48F8FB3C-3C4D-445C-9698-F909857CE060" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:3.6:*:exchange:*:*:*:*:*", "matchCriteriaId": "B1FCB859-6D34-4D25-81A4-C7A190796353" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:3.6.1:*:exchange:*:*:*:*:*", "matchCriteriaId": "6D72EF02-AC31-49CA-B941-9A3EE3681DFE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:3.6_sp1a:*:exchange:*:*:*:*:*", "matchCriteriaId": "2D6C3AC1-728C-4C41-A51E-845FC97C9304" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:3.6_sp4_hotfix2:*:exchange:*:*:*:*:*", "matchCriteriaId": "41C4E2AB-E445-4AEE-8A80-DEDBF58969A8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:domino:*:*:*:*:*", "matchCriteriaId": "0F464E52-6DF6-4F88-BA5A-1D04C945E892" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:novell_groupwise:*:*:*:*:*", "matchCriteriaId": "D4B64528-A373-4BA4-8C00-1E1FC41D8FA8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:domino:*:*:*:*:*", "matchCriteriaId": "7DE7336D-D9F6-45EC-9C11-6E999A15AC3E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:novell_groupwise:*:*:*:*:*", "matchCriteriaId": "2C1BE106-EB0E-473D-8700-D4B4837B6D61" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp2:*:domino:*:*:*:*:*", "matchCriteriaId": "80FA8083-7E9B-45B6-A77E-8B84F5E99A05" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp2:*:novell_groupwise:*:*:*:*:*", "matchCriteriaId": "082140AD-602C-4E0F-8F9A-DD8CC5AEE7DE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp3:*:domino:*:*:*:*:*", "matchCriteriaId": "31BD0BCD-D3FF-4C36-86C9-13715AD6789A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp3:*:novell_groupwise:*:*:*:*:*", "matchCriteriaId": "1465EC3C-2CC0-46B1-A05F-C579E6C656FD" } ] } ] } ], "references": [ { "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/8149/8052/Support_-_Corrupt_Word_file_may_cause_buffer_overflow_in_the_BlackBerry_Attachment_Service.html?nodeid=1181753&vernum=2", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/archive/1/424728/100/0/threaded", "source": "cve@mitre.org" }, { "url": "http://www.securityfocus.com/bid/16590", "source": "cve@mitre.org" }, { "url": "http://www.vupen.com/english/advisories/2006/0530", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24629", "source": "cve@mitre.org" } ] }