BlackBerry Enterprise Server / Attachment Service PDF Distiller Buffer Overflow (KB25382)
High Nessus Plugin ID 51527
SynopsisThe remote Windows host has an application that is affected by a buffer overflow vulnerability.
DescriptionThe version of BlackBerry Enterprise Server installed on the remote host is reportedly affected by a buffer overflow vulnerability in the PDF distiller component of the BlackBerry Attachment Service. By sending a specially crafted PDF file and having it opened on a BlackBerry smartphone, an attacker may be able to execute arbitrary code on the system that runs the BlackBerry Attachment Service.
SolutionApply the vendor-supplied patches.