CyberSec.Space Logo
Back to CVE Browser

CVE-2006-0761

MEDIUM
5.1
CVSS Severity Score
EPSS Score0.0250%
EPSS Percentile29.55th
PublishedFeb 18, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in BlackBerry Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server 2.2 and 4.0 before SP3 Hotfix 4 for IBM Lotus Domino, 3.6 before SP7 and 5.0 before SP3 Hotfix 3 for Microsoft Exchangem, and 4.0 for Novell GroupWise before SP3 Hotfix 1 might allow user-assisted remote attackers to execute arbitrary code on the server via a crafted Microsoft Word document that is opened on a wireless device.

Affected Platforms (CPE)

πŸ“¦
Rim

Blackberry Enterprise Server

= 2.2
πŸ“¦
Rim

Blackberry Enterprise Server

= 2.2_sp2
πŸ“¦
Rim

Blackberry Enterprise Server

= 2.2_sp2a
πŸ“¦
Rim

Blackberry Enterprise Server

= 2.2_sp3a
πŸ“¦
Rim

Blackberry Enterprise Server

= 2.2_sp4
πŸ“¦
Rim

Blackberry Enterprise Server

= 2.2_sp4_hotfix2
πŸ“¦
Rim

Blackberry Enterprise Server

= 3.6
πŸ“¦
Rim

Blackberry Enterprise Server

= 3.6.1
πŸ“¦
Rim

Blackberry Enterprise Server

= 3.6_sp1a
πŸ“¦
Rim

Blackberry Enterprise Server

= 3.6_sp4_hotfix2
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0_sp1
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0_sp1
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0_sp2
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0_sp2
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0_sp3
πŸ“¦
Rim

Blackberry Enterprise Server

= 4.0_sp3

References & Advisories

πŸ”— http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/8149/8052/Support_-_Corrupt_Word_file_may_cause_buffer_overflow_in_the_BlackBerry_Attachment_Service.html?nodeid=1181753&vernum=2
πŸ”— http://www.securityfocus.com/archive/1/424728/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/16590
πŸ”— http://www.vupen.com/english/advisories/2006/0530
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/24629
πŸ”— http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/8149/8052/Support_-_Corrupt_Word_file_may_cause_buffer_overflow_in_the_BlackBerry_Attachment_Service.html?nodeid=1181753&vernum=2
πŸ”— http://www.securityfocus.com/archive/1/424728/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/16590

Related Vulnerabilities

CVE-2007-348310.0

Research in Motion BlackBerry Enterprise Server 4.0 through 4.1 has a default configuration that permits installation of arbitrary...

CVE-2008-32469.3

Unspecified vulnerability in the PDF distiller component in the BlackBerry Attachment Service in BlackBerry Unite! 1.0 SP1 (1.0.1)...

CVE-2009-01769.3

Multiple heap-based buffer overflows in the PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterpr...

CVE-2009-02199.3

The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, Bl...