BlackBerry Link Multiple Vulnerabilities
Medium Nessus Plugin ID 71040
SynopsisThe remote host has software installed that is affected by multiple vulnerabilities.
DescriptionThe remote host has a version of BlackBerry Link installed that is prior to version 22.214.171.124. Such versions are affected by multiple vulnerabilities :
- A WebDAV server that listens on an IPv6 address allows remote access to the host's file system. It may also be possible to utilize this vulnerability via a DNS rebinding attack to execute arbitrary code by tricking a user into opening a specially crafted page.
- A flaw in Peer Manager on Mac OS X may allow context-dependent attackers to bypass access restrictions on remote file-access folders for WebDAV requests. (CVE-2013-6798)
SolutionUpgrade to BlackBerry Link 126.96.36.199.