Unrated severityNVD Advisory· Published Apr 21, 2010· Updated Jun 16, 2026
CVE-2009-4778
CVE-2009-4778
Description
Multiple unspecified vulnerabilities in the PDF distiller in the Attachment Service component in Research In Motion (RIM) BlackBerry Enterprise Server (BES) software 4.1.3 through 4.1.7 and 5.0.0, and BlackBerry Professional Software 4.1.4, allow user-assisted remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .pdf file attachment, a different vulnerability than CVE-2008-3246, CVE-2009-0176, CVE-2009-0219, CVE-2009-2643, and CVE-2009-2646.
Affected products
10cpe:2.3:a:rim:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:rim:blackberry_enterprise_server:4.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:rim:blackberry_enterprise_server:4.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:rim:blackberry_enterprise_server:4.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:rim:blackberry_enterprise_server:4.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:rim:blackberry_enterprise_server:4.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:rim:blackberry_enterprise_server:5.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:rim:blackberry_professional_software:4.1.4:*:*:*:*:*:*:*
- Range: 4.1.3 - 4.1.7, 5.0.0
- Range: 4.1.4
- Range: 4.1.3 - 4.1.7, 5.0.0
Patches
Vulnerability mechanics
References
5- www.blackberry.com/btsc/KB19860nvdPatchVendor Advisory
- www.vupen.com/english/advisories/2009/3372nvdPatchVendor Advisory
- secunia.com/advisories/37562nvdVendor Advisory
- www.securityfocus.com/bid/37167nvd
- www.securitytracker.com/idnvd
News mentions
0No linked articles in our index yet.