CVE-2005-2343

Research in Motion (RIM) BlackBerry Handheld web browser for BlackBerry Handheld before 4.0.2 allows remote attackers to cause a denial of service (hang) via a Java Application Description (JAD) file with a long application name and vendor string, which prevents a browser dialog from being properly dismissed.

CVSS v2.0 2.6 LOW

2.6^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:N/I:N/A:P

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://securitytracker.com/id?1015428
http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791
http://www.kb.cert.org/vuls/id/829400	Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/16099
http://www.vupen.com/english/advisories/2006/0011
http://securitytracker.com/id?1015428
http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791
http://www.kb.cert.org/vuls/id/829400	Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/16099
http://www.vupen.com/english/advisories/2006/0011

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:rim:blackberry_desktop_manager:4.0:::::::*
	cpe:2.3:a:rim:blackberry_device_software:4.0:::::::*

Configuration 2 (hide)

OR	cpe:2.3:a:rim:blackberry:7100g:::::::*
	cpe:2.3:a:rim:blackberry:7100i:::::::*
	cpe:2.3:a:rim:blackberry:7100r:::::::*
	cpe:2.3:a:rim:blackberry:7100t:::::::*
	cpe:2.3:a:rim:blackberry:7100v:::::::*
	cpe:2.3:a:rim:blackberry:7100x:::::::*
	cpe:2.3:a:rim:blackberry:7105t:::::::*
	cpe:2.3:a:rim:blackberry:7130e:::::::*
	cpe:2.3:a:rim:blackberry:7230_3.7.1_.41:::::::*
	cpe:2.3:a:rim:blackberry:7230_3.8:::::::*
	cpe:2.3:a:rim:blackberry:7230_4.0:::::::*
	cpe:2.3:a:rim:blackberry:7250:::::::*
	cpe:2.3:a:rim:blackberry:7280:::::::*
	cpe:2.3:a:rim:blackberry:7290:::::::*
	cpe:2.3:a:rim:blackberry:7520:::::::*
	cpe:2.3:a:rim:blackberry:7730:::::::*
	cpe:2.3:a:rim:blackberry:7750:::::::*
	cpe:2.3:a:rim:blackberry:7780:::::::*
	cpe:2.3:a:rim:blackberry:8700c:::::::*
	cpe:2.3:a:rim:blackberry:8700f:::::::*
	cpe:2.3:a:rim:blackberry:8700r:::::::*

History

20 Nov 2024, 23:59

Type	Values Removed	Values Added
References	~~() http://securitytracker.com/id?1015428 -~~	() http://securitytracker.com/id?1015428 -
References	~~() http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791 -~~	() http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791 -
References	~~() http://www.kb.cert.org/vuls/id/829400 - Third Party Advisory, US Government Resource~~	() http://www.kb.cert.org/vuls/id/829400 - Third Party Advisory, US Government Resource
References	~~() http://www.securityfocus.com/bid/16099 -~~	() http://www.securityfocus.com/bid/16099 -
References	~~() http://www.vupen.com/english/advisories/2006/0011 -~~	() http://www.vupen.com/english/advisories/2006/0011 -

Information

Published : 2005-12-31 05:00

Updated : 2025-04-03 01:03

NVD link : CVE-2005-2343

Mitre link : CVE-2005-2343

CVE.ORG link : CVE-2005-2343

JSON object : View

Products Affected

rim

blackberry
blackberry_desktop_manager
blackberry_device_software

CWE

NVD-CWE-Other

{"id": "CVE-2005-2343", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 2.6, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "HIGH", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2005-12-31T05:00:00.000", "references": [{"url": "http://securitytracker.com/id?1015428", "source": "cret@cert.org"}, {"url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791", "source": "cret@cert.org"}, {"url": "http://www.kb.cert.org/vuls/id/829400", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/bid/16099", "source": "cret@cert.org"}, {"url": "http://www.vupen.com/english/advisories/2006/0011", "source": "cret@cert.org"}, {"url": "http://securitytracker.com/id?1015428", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/7925/8142/?nodeid=1167791", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/829400", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/16099", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/0011", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Research in Motion (RIM) BlackBerry Handheld web browser for BlackBerry Handheld before 4.0.2 allows remote attackers to cause a denial of service (hang) via a Java Application Description (JAD) file with a long application name and vendor string, which prevents a browser dialog from being properly dismissed."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rim:blackberry_desktop_manager:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9477C1A-2072-4362-BD67-27C721E7E805"}, {"criteria": "cpe:2.3:a:rim:blackberry_device_software:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "500A2D65-7220-4252-856F-052EA40EFB12"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rim:blackberry:7100g:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE6C1404-8B96-460C-9060-04C402E23AF1"}, {"criteria": "cpe:2.3:a:rim:blackberry:7100i:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E08E215F-7EF3-4012-8D14-689EE1550A67"}, {"criteria": "cpe:2.3:a:rim:blackberry:7100r:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "67CD32AF-AB92-4215-9062-BB3E97444518"}, {"criteria": "cpe:2.3:a:rim:blackberry:7100t:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ECE29076-C3FD-475A-AE95-41E78596AC75"}, {"criteria": "cpe:2.3:a:rim:blackberry:7100v:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD365609-508D-4501-86DB-2D510F0F1071"}, {"criteria": "cpe:2.3:a:rim:blackberry:7100x:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6142B7E1-002A-4BA5-A062-2614029FCA30"}, {"criteria": "cpe:2.3:a:rim:blackberry:7105t:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AFBCA036-2636-451D-A03F-20D4B2837D8D"}, {"criteria": "cpe:2.3:a:rim:blackberry:7130e:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EBA64687-7D57-4630-A948-A4C510164AEC"}, {"criteria": "cpe:2.3:a:rim:blackberry:7230_3.7.1_.41:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AC44A87-CE11-48F8-BBF1-7971784D4A43"}, {"criteria": "cpe:2.3:a:rim:blackberry:7230_3.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7FE590B-9A8A-4839-91F9-941B192EA2C4"}, {"criteria": "cpe:2.3:a:rim:blackberry:7230_4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5080187-373E-47FE-9970-30049690E632"}, {"criteria": "cpe:2.3:a:rim:blackberry:7250:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "49E4214E-8D31-4E0C-8266-89D228605A13"}, {"criteria": "cpe:2.3:a:rim:blackberry:7280:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5038858C-709E-4C0D-80A9-41E8A3D07633"}, {"criteria": "cpe:2.3:a:rim:blackberry:7290:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4F290329-09CC-40C8-A928-CD66841B68D1"}, {"criteria": "cpe:2.3:a:rim:blackberry:7520:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8485224-909C-440C-93BB-B059E89CBB87"}, {"criteria": "cpe:2.3:a:rim:blackberry:7730:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2CD18A44-5A92-41DF-B67E-A4EF010BCE2F"}, {"criteria": "cpe:2.3:a:rim:blackberry:7750:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD5FCD19-F244-4E53-A843-AF4D053C3680"}, {"criteria": "cpe:2.3:a:rim:blackberry:7780:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30142764-C686-432F-BFA4-F7D42C232CE3"}, {"criteria": "cpe:2.3:a:rim:blackberry:8700c:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24DC35A6-D335-4968-81AD-5A4FE982F550"}, {"criteria": "cpe:2.3:a:rim:blackberry:8700f:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D7A8585-EE80-46F4-95A6-229A0A34D3BB"}, {"criteria": "cpe:2.3:a:rim:blackberry:8700r:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EC877CE-41BC-49CF-9381-209EA4222AEE"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}

2.6 /10