ID
VAR-201010-0586
TITLE
Research In Motion BlackBerry Device Software Cross Domain Information Disclosure Vulnerability
Trust: 0.3
DESCRIPTION
Research In Motion BlackBerry Device Software is prone to a cross-domain information-disclosure vulnerability because the application's web browser fails to properly enforce the same-origin policy. An attacker can exploit this issue to access local files or content from a browser window in another domain or security zone. This may allow the attacker to obtain sensitive information or may aid in further attacks.
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.7.1.57 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.7.1 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.7.179 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.7 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.6.1.309 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.6.1 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.6.303 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.6 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.5.173 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.5 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.0.2 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.0.1.83 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.0.1.108 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 4.0 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry device software | scope: | eq | version: | 5.0 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry | scope: | eq | version: | 88004.2 | Trust: 0.3 |
| vendor: | research | model: | in motion blackberry | scope: | eq | version: | 9700 | Trust: 0.3 |
THREAT TYPE
network
Trust: 0.3
TYPE
Origin Validation Error
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 43685 | Trust: 0.3 |
REFERENCES
| url: | http://www.rim.net/ | Trust: 0.3 |
CREDITS
599eme Man
Trust: 0.3
SOURCES
| db: | BID | id: | 43685 |
LAST UPDATE DATE
2022-05-17T02:07:22.100000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 43685 | date: | 2010-10-04T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 43685 | date: | 2010-10-04T00:00:00 |