Sign-up

ID

VAR-201103-0082


CVE

CVE-2011-1416


TITLE

RIM of BlackBerry Torch 9800 Vulnerability in reading content in memory area

Trust: 0.8

sources: JVNDB: JVNDB-2011-004383

DESCRIPTION

The Research In Motion (RIM) BlackBerry Torch 9800 with firmware 6.0.0.246 allows attackers to read the contents of memory locations via unknown vectors, as demonstrated by Vincenzo Iozzo, Willem Pinckaers, and Ralf-Philipp Weinmann during a Pwn2Own competition at CanSecWest 2011. Blackberry Torch 9800 is prone to a remote security vulnerability. This vulnerability has been demonstrated by Vincenzo Iozzo, Willem Pinckaers and Ralf-Philipp Weinmann in the Pwn2Own hacking contest at CanSecWest 2011

Trust: 1.98

sources: NVD: CVE-2011-1416 // JVNDB: JVNDB-2011-004383 // BID: 78559 // VULHUB: VHN-49361

AFFECTED PRODUCTS

vendor:rimmodel:blackberry torch 9800scope:eqversion:6.0.0.246

Trust: 1.6

vendor:rimmodel:blackberry torch 9800scope:eqversion:*

Trust: 1.0

vendor:blackberrymodel:torch 9800scope: - version: -

Trust: 0.8

vendor:blackberrymodel:torch 9800scope:eqversion:6.0.0.246

Trust: 0.8

vendor:rimmodel:blackberry torchscope:eqversion:98006.0.0.246

Trust: 0.3

vendor:rimmodel:blackberry torchscope:eqversion:98000

Trust: 0.3

sources: BID: 78559 // JVNDB: JVNDB-2011-004383 // CNNVD: CNNVD-201103-178 // NVD: CVE-2011-1416

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2011-1416
value: MEDIUM

Trust: 1.0

NVD: CVE-2011-1416
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201103-178
value: MEDIUM

Trust: 0.6

VULHUB: VHN-49361
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2011-1416
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-49361
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-49361 // JVNDB: JVNDB-2011-004383 // CNNVD: CNNVD-201103-178 // NVD: CVE-2011-1416

PROBLEMTYPE DATA

problemtype:CWE-200

Trust: 1.9

sources: VULHUB: VHN-49361 // JVNDB: JVNDB-2011-004383 // NVD: CVE-2011-1416

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201103-178

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-201103-178

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2011-004383

PATCH
title:BlackBerry Torchurl:http://us.blackberry.com/smartphones/blackberrytorch/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2011-004383

EXTERNAL IDS
db:NVDid:CVE-2011-1416
Trust: 2.8
db:JVNDBid:JVNDB-2011-004383
Trust: 0.8
db:CNNVDid:CNNVD-201103-178
Trust: 0.7
db:BIDid:78559
Trust: 0.4
db:VULHUBid:VHN-49361
Trust: 0.1
sources:
            
            
            VULHUB: VHN-49361 // 
            
            
            
            BID: 78559 // 
            
            
            
            JVNDB: JVNDB-2011-004383 // 
            
            
            
            CNNVD: CNNVD-201103-178 // 
            
            
            
            NVD: CVE-2011-1416

REFERENCES
url:http://dvlabs.tippingpoint.com/blog/2011/02/02/pwn2own-2011
Trust: 2.0
url:http://www.zdnet.com/blog/security/pwn2own-2011-blackberry-falls-to-webkit-browser-attack/8401
Trust: 2.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2011-1416
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2011-1416
Trust: 0.8
sources:
            
            
            VULHUB: VHN-49361 // 
            
            
            
            BID: 78559 // 
            
            
            
            JVNDB: JVNDB-2011-004383 // 
            
            
            
            CNNVD: CNNVD-201103-178 // 
            
            
            
            NVD: CVE-2011-1416

CREDITS
Unknown
Trust: 0.3
sources:
            
            
            BID: 78559

SOURCES
db:VULHUBid:VHN-49361
db:BIDid:78559
db:JVNDBid:JVNDB-2011-004383
db:CNNVDid:CNNVD-201103-178
db:NVDid:CVE-2011-1416

LAST UPDATE DATE
2025-04-11T23:08:59.122000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-49361date:2011-03-24T00:00:00
db:BIDid:78559date:2011-03-11T00:00:00
db:JVNDBid:JVNDB-2011-004383date:2012-03-27T00:00:00
db:CNNVDid:CNNVD-201103-178date:2011-03-15T00:00:00
db:NVDid:CVE-2011-1416date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:VULHUBid:VHN-49361date:2011-03-11T00:00:00
db:BIDid:78559date:2011-03-11T00:00:00
db:JVNDBid:JVNDB-2011-004383date:2012-03-27T00:00:00
db:CNNVDid:CNNVD-201103-178date:2011-03-14T00:00:00
db:NVDid:CVE-2011-1416date:2011-03-11T17:55:03.727