BlackBerry Enterprise Server / Unite! PDF Distiller Component Vulnerabilities (KB17118 / KB17119)

high Nessus Plugin ID 35430

Synopsis

The remote Windows host has an application that is affected by several vulnerabilities.

Description

The version of BlackBerry Enterprise Server / BlackBerry Unite! on the remote host reportedly contains several vulnerabilities in the PDF distiller component of the BlackBerry Attachment Service :

- A heap-based buffer overflow triggered when parsing a certain stream inside a PDF file.

- A heap-based buffer overflow triggered when parsing a data stream inside of a PDF file.

- An uninitialized memory vulnerability triggered when when parsing a data stream inside of a PDF file.

A remote attacker may be able to leverage these issues to execute arbitrary code on the affected host subject to the privileges under which the application runs, generally 'SYSTEM', by sending an email message with a specially crafted PDF file and having that opened for viewing on a BlackBerry smartphone.

Solution

If using BlackBerry Enterprise Server, apply Interim Security Software Update 2 or later or prevent the Attachment Service from processing PDF files.

If using BlackBerry Unite!, either upgrade to 1.0.3 bundle 28 or later or prevent the Attachment Service from processing PDF files.

See Also

http://www.nessus.org/u?3319be28

http://www.nessus.org/u?7cb4b343

http://www.nessus.org/u?bc1633bf

https://www.securityfocus.com/archive/1/500011/30/0/threaded

https://www.securityfocus.com/archive/1/500015/30/0/threaded

https://www.securityfocus.com/archive/1/500016/30/0/threaded

https://salesforce.services.blackberry.com/kbredirect/viewContent.do?externalId=KB17118

https://salesforce.services.blackberry.com/kbredirect/viewContent.do?externalId=KB17119

Plugin Details

Severity: High

ID: 35430

File Name: blackberry_es_pdf_kb17118.nasl

Version: 1.20

Type: local

Agent: windows

Family: Windows

Published: 1/20/2009

Updated: 11/15/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:rim:blackberry_enterprise_server

Required KB Items: BlackBerry_ES/Product, BlackBerry_ES/Path, BlackBerry_ES/Version, SMB/Registry/Enumerated, BlackBerry_ES/AttachmentServer

Exploit Ease: No known exploits are available

Reference Information

CVE: CVE-2009-0176, CVE-2009-0219

BID: 33224, 33248, 33250

CWE: 119, 399

Secunia: 33534