CVE-2010-2604

Multiple buffer overflows in the PDF Distiller in the BlackBerry Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server 4.1.3 through 5.0.2, and Enterprise Server Express 5.0.1 and 5.0.2, allow remote attackers to execute arbitrary code via a crafted PDF file.

Published: Jan 13, 2011
Updated: Apr 13, 2023
CVE: CVE-2010-2604
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
rim / blackberry_enterprise_server	5.0.2	5.0.2.x
rim / blackberry_enterprise_server	4.1.7	4.1.7.x
rim / blackberry_enterprise_server	4.1.6-mr4	4.1.6-mr4.x
rim / blackberry_enterprise_server	4.1.5	4.1.5.x
rim / blackberry_enterprise_server	4.1.4	4.1.4.x
rim / blackberry_enterprise_server	5.0.0	5.0.0.x
rim / blackberry_enterprise_server	4.1.6	4.1.6.x
rim / blackberry_enterprise_server	4.1.3	4.1.3.x
rim / blackberry_enterprise_server	5.0.1	5.0.1.x
rim / blackberry_enterprise_server_express	5.0.1	5.0.1.x
rim / blackberry_enterprise_server_express	5.0.2	5.0.2.x

Vulnerability Database

289,697

CVE-2010-2604