Unrated severityNVD Advisory· Published Jan 21, 2009· Updated Jun 16, 2026
CVE-2009-0219
CVE-2009-0219
Description
The PDF distiller in the Attachment Service in Research in Motion (RIM) BlackBerry Enterprise Server (BES) 4.1.3 through 4.1.6, BlackBerry Professional Software 4.1.4, and BlackBerry Unite! before 1.0.3 bundle 28 performs delete operations on uninitialized pointers, which allows user-assisted remote attackers to execute arbitrary code via a crafted data stream in a .pdf file.
Affected products
12cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:research_in_motion_limited:blackberry_enterprise_server:4.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:research_in_motion_limited:blackberry_professional_software:4.1.4:*:*:*:*:*:*:*
cpe:2.3:a:research_in_motion_limited:blackberry_unite:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:research_in_motion_limited:blackberry_unite:*:*:*:*:*:*:*:*range: <=1.0.3
- cpe:2.3:a:research_in_motion_limited:blackberry_unite:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:research_in_motion_limited:blackberry_unite:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:research_in_motion_limited:blackberry_unite:1.0.2:*:*:*:*:*:*:*
- Range: < 1.0.3 bundle 28
- Range: 4.1.3 - 4.1.6
- Range: 4.1.4
Patches
Vulnerability mechanics
References
6- secunia.com/advisories/33534nvdVendor Advisory
- www.blackberry.com/btsc/search.donvdVendor Advisory
- www.blackberry.com/btsc/search.donvdVendor Advisory
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- www.securityfocus.com/bid/33250nvd
- www.securitytracker.com/idnvd
News mentions
0No linked articles in our index yet.