VDB
CVE-2005-2344
CVE-2005-2344
PUBLISHED
CVSS 5 MEDIUM
The BlackBerry Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.0 to version 4.0 Service Pack 2 allows attackers to cause a denial of service via a malformed Portable Network Graphics (PNG) file that triggers a heap-based buffer overflow.
EPSS 2.02% · 84.1th percentile
Risk Scores
CVSS 2.0
5
EPSS Score
2.02%
84.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| rim | blackberry_enterprise_server | 4.0, 4.0_sp1, * |
Timeline
- Dec 31, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 1, 2022 CVE Updated
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- 18393 third-party-advisory
- blackberry-attachment-png-bo(24063) vdb
- 16204 vdb
- ADV-2006-0127 vdb
- http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167794 url
- VU#646976 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2005-2344 advisory