CVE-2010-2602 Information

Description

Multiple buffer overflows in the PDF distiller component in the BlackBerry Attachment Service in BlackBerry Enterprise Server 5.0.0 through 5.0.2 4.1.6 and 4.1.7 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF document.

Reference

http://secunia.com/advisories/35632 http://www.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB24761 http://www.securityfocus.com/bid/45392 http://www.securitytracker.com/id?1024891 http://www.vupen.com/english/advisories/2010/3237 https://exchange.xforce.ibmcloud.com/vulnerabilities/64066