cvelistv5 - cve-2005-2342

cve-2005-2342

Vulnerability from cvelistv5

Published

2006-01-02 00:00

Modified

2024-08-07 22:22

Severity ?

Summary

Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.

References

URL	Tags
cret@cert.org	http://secunia.com/advisories/18277
cret@cert.org	http://securitytracker.com/id?1015427
cret@cert.org	http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898
cret@cert.org	http://www.kb.cert.org/vuls/id/392920	Third Party Advisory, US Government Resource
cret@cert.org	http://www.securityfocus.com/bid/16100
cret@cert.org	http://www.vupen.com/english/advisories/2006/0011
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18277
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015427
af854a3a-2127-422b-91ae-364da2661108	http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/392920	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/16100
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0011

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T22:22:48.943Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
          },
          {
            "name": "VU#392920",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/392920"
          },
          {
            "name": "1015427",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1015427"
          },
          {
            "name": "16100",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/16100"
          },
          {
            "name": "18277",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/18277"
          },
          {
            "name": "ADV-2006-0011",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/0011"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2005-12-31T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2006-01-04T10:00:00",
        "orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
        "shortName": "certcc"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
        },
        {
          "name": "VU#392920",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/392920"
        },
        {
          "name": "1015427",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1015427"
        },
        {
          "name": "16100",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/16100"
        },
        {
          "name": "18277",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/18277"
        },
        {
          "name": "ADV-2006-0011",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/0011"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2005-2342",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898",
              "refsource": "CONFIRM",
              "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
            },
            {
              "name": "VU#392920",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/392920"
            },
            {
              "name": "1015427",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1015427"
            },
            {
              "name": "16100",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/16100"
            },
            {
              "name": "18277",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/18277"
            },
            {
              "name": "ADV-2006-0011",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/0011"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
    "assignerShortName": "certcc",
    "cveId": "CVE-2005-2342",
    "datePublished": "2006-01-02T00:00:00",
    "dateReserved": "2005-07-21T00:00:00",
    "dateUpdated": "2024-08-07T22:22:48.943Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B7A2FFD-C840-459C-95C2-92FEDF341D5E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BB5E40FD-5EC5-4D71-8B53-805A7399675D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:rim:blackberry_router:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"4.0\", \"matchCriteriaId\": \"19D60287-6FB4-4F5E-A863-1E092D5F637E\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.\"}]",
      "id": "CVE-2005-2342",
      "lastModified": "2024-11-20T23:59:21.030",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2005-12-31T05:00:00.000",
      "references": "[{\"url\": \"http://secunia.com/advisories/18277\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://securitytracker.com/id?1015427\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/392920\", \"source\": \"cret@cert.org\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.securityfocus.com/bid/16100\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0011\", \"source\": \"cret@cert.org\"}, {\"url\": \"http://secunia.com/advisories/18277\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1015427\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/392920\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.securityfocus.com/bid/16100\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/0011\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cret@cert.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2005-2342\",\"sourceIdentifier\":\"cret@cert.org\",\"published\":\"2005-12-31T05:00:00.000\",\"lastModified\":\"2024-11-20T23:59:21.030\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B7A2FFD-C840-459C-95C2-92FEDF341D5E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB5E40FD-5EC5-4D71-8B53-805A7399675D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:rim:blackberry_router:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"4.0\",\"matchCriteriaId\":\"19D60287-6FB4-4F5E-A863-1E092D5F637E\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/18277\",\"source\":\"cret@cert.org\"},{\"url\":\"http://securitytracker.com/id?1015427\",\"source\":\"cret@cert.org\"},{\"url\":\"http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898\",\"source\":\"cret@cert.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/392920\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/bid/16100\",\"source\":\"cret@cert.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0011\",\"source\":\"cret@cert.org\"},{\"url\":\"http://secunia.com/advisories/18277\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1015427\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/392920\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/bid/16100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/0011\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets. The Blackberry Enterprise Server Router component is prone to a denial of service vulnerability. This could only be exploited by an attacker who can communicate with the Router.

1) An error exists in the Attachment Service when handling malformed TIFF image attachments. This can be exploited to prevent a BlackBerry user from viewing attachments.

Successful exploitation requires that the attacker is able to connect to the BlackBerry Server/Router via port 3101/tcp.

SOLUTION: The vendor recommends the following workaround.

1) Exclude TIFF images from being processed by the Attachment Service and/or disable the image attachment distiller.

Refer to the vendor's original advisory for specific instructions.

PROVIDED AND/OR DISCOVERED BY: FX, Phenoelit.

ORIGINAL ADVISORY: http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898 http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167895

OTHER REFERENCES: US-CERT VU#570768: http://www.kb.cert.org/vuls/id/570768

US-CERT VU#392920: http://www.kb.cert.org/vuls/id/392920

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200512-0645",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "research in motion rim",
        "version": null
      },
      {
        "model": "blackberry enterprise server",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "rim",
        "version": "4.0_sp1"
      },
      {
        "model": "blackberry enterprise server",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "rim",
        "version": "4.0"
      },
      {
        "model": "blackberry router",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "rim",
        "version": "4.0"
      },
      {
        "model": "blackberry router",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "rim",
        "version": "4.0"
      },
      {
        "model": "blackberry enterprise server for exchange sp1",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "rim",
        "version": "4.0"
      },
      {
        "model": "blackberry enterprise server for domino",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "rim",
        "version": "4.0"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rim:blackberry_router:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "4.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Discovery is credited to FX of Phenoelit.",
    "sources": [
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ],
    "trust": 0.9
  },
  "cve": "CVE-2005-2342",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-13551",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2005-2342",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#392920",
            "trust": 0.8,
            "value": "5.41"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#570768",
            "trust": 0.8,
            "value": "7.02"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200512-654",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-13551",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets. The Blackberry Enterprise Server Router component is prone to a denial of service vulnerability.  This could only be exploited by an attacker who can communicate with the Router. \n\n1) An error exists in the Attachment Service when handling malformed\nTIFF image attachments. This can be exploited to prevent a BlackBerry\nuser from viewing attachments. \n\nSuccessful exploitation requires that the attacker is able to connect\nto the BlackBerry Server/Router via port 3101/tcp. \n\nSOLUTION:\nThe vendor recommends the following workaround. \n\n1) Exclude TIFF images from being processed by the Attachment Service\nand/or disable the image attachment distiller. \n\nRefer to the vendor\u0027s original advisory for specific instructions. \n\nPROVIDED AND/OR DISCOVERED BY:\nFX, Phenoelit. \n\nORIGINAL ADVISORY:\nhttp://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898\nhttp://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167895\n\nOTHER REFERENCES:\nUS-CERT VU#570768:\nhttp://www.kb.cert.org/vuls/id/570768\n\nUS-CERT VU#392920:\nhttp://www.kb.cert.org/vuls/id/392920\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "db": "PACKETSTORM",
        "id": "42737"
      }
    ],
    "trust": 2.79
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#392920",
        "trust": 2.6
      },
      {
        "db": "BID",
        "id": "16100",
        "trust": 2.0
      },
      {
        "db": "NVD",
        "id": "CVE-2005-2342",
        "trust": 2.0
      },
      {
        "db": "SECUNIA",
        "id": "18277",
        "trust": 1.9
      },
      {
        "db": "VUPEN",
        "id": "ADV-2006-0011",
        "trust": 1.7
      },
      {
        "db": "SECTRACK",
        "id": "1015427",
        "trust": 1.7
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768",
        "trust": 0.9
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654",
        "trust": 0.7
      },
      {
        "db": "VULHUB",
        "id": "VHN-13551",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "42737",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "PACKETSTORM",
        "id": "42737"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "id": "VAR-200512-0645",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-13551"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T13:21:05.452000Z",
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.9,
        "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
      },
      {
        "trust": 1.8,
        "url": "http://www.kb.cert.org/vuls/id/392920"
      },
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/16100"
      },
      {
        "trust": 1.7,
        "url": "http://securitytracker.com/id?1015427"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/18277"
      },
      {
        "trust": 1.6,
        "url": "http://events.ccc.de/congress/2005/fahrplan/events/596.en.html"
      },
      {
        "trust": 1.6,
        "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/?func=doc.fetch\u0026nodeid=739746"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2006/0011"
      },
      {
        "trust": 0.9,
        "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167895"
      },
      {
        "trust": 0.8,
        "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/?func=doc.fetch\u0026nodeid=817014"
      },
      {
        "trust": 0.8,
        "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/?func=doc.fetch\u0026nodeid=780409"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2006/0011"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/6715/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/4531/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/18277/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/4530/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/570768"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "PACKETSTORM",
        "id": "42737"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "PACKETSTORM",
        "id": "42737"
      },
      {
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2005-12-31T00:00:00",
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "date": "2005-12-30T00:00:00",
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "date": "2005-12-31T00:00:00",
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "date": "2005-12-30T00:00:00",
        "db": "BID",
        "id": "16100"
      },
      {
        "date": "2006-01-03T02:31:52",
        "db": "PACKETSTORM",
        "id": "42737"
      },
      {
        "date": "2005-12-31T05:00:00",
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "date": "2005-12-31T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2008-11-24T00:00:00",
        "db": "CERT/CC",
        "id": "VU#392920"
      },
      {
        "date": "2006-01-09T00:00:00",
        "db": "CERT/CC",
        "id": "VU#570768"
      },
      {
        "date": "2011-03-08T00:00:00",
        "db": "VULHUB",
        "id": "VHN-13551"
      },
      {
        "date": "2005-12-30T00:00:00",
        "db": "BID",
        "id": "16100"
      },
      {
        "date": "2011-03-08T02:24:08.237000",
        "db": "NVD",
        "id": "CVE-2005-2342"
      },
      {
        "date": "2007-06-04T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Blackberry Enterprise Server Router SRP Packet Denial Of Service Vulnerability",
    "sources": [
      {
        "db": "BID",
        "id": "16100"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ],
    "trust": 0.9
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200512-654"
      }
    ],
    "trust": 0.6
  }
}

gsd-2005-2342

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.

Aliases

CVE-2005-2342

Aliases

CVE-2005-2342

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2005-2342",
    "description": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.",
    "id": "GSD-2005-2342"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2005-2342"
      ],
      "details": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.",
      "id": "GSD-2005-2342",
      "modified": "2023-12-13T01:20:10.798772Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cert@cert.org",
        "ID": "CVE-2005-2342",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898",
            "refsource": "CONFIRM",
            "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
          },
          {
            "name": "VU#392920",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/392920"
          },
          {
            "name": "1015427",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1015427"
          },
          {
            "name": "16100",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/16100"
          },
          {
            "name": "18277",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/18277"
          },
          {
            "name": "ADV-2006-0011",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/0011"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:rim:blackberry_router:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "4.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cert@cert.org",
          "ID": "CVE-2005-2342"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#392920",
              "refsource": "CERT-VN",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/392920"
            },
            {
              "name": "16100",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/16100"
            },
            {
              "name": "1015427",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1015427"
            },
            {
              "name": "18277",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/18277"
            },
            {
              "name": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
            },
            {
              "name": "ADV-2006-0011",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/0011"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2011-03-08T02:24Z",
      "publishedDate": "2005-12-31T05:00Z"
    }
  }
}

cve-2005-2342

Vulnerability from fkie_nvd

Published

2005-12-31 05:00

Modified

2024-11-20 23:59

Severity ?

Summary

Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.

References

URL	Tags
cret@cert.org	http://secunia.com/advisories/18277
cret@cert.org	http://securitytracker.com/id?1015427
cret@cert.org	http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898
cret@cert.org	http://www.kb.cert.org/vuls/id/392920	Third Party Advisory, US Government Resource
cret@cert.org	http://www.securityfocus.com/bid/16100
cret@cert.org	http://www.vupen.com/english/advisories/2006/0011
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18277
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015427
af854a3a-2127-422b-91ae-364da2661108	http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/392920	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/16100
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/0011

Impacted products

Vendor	Product	Version
rim	blackberry_enterprise_server	4.0
rim	blackberry_enterprise_server	4.0_sp1
rim	blackberry_router	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B7A2FFD-C840-459C-95C2-92FEDF341D5E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:4.0_sp1:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB5E40FD-5EC5-4D71-8B53-805A7399675D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:rim:blackberry_router:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "19D60287-6FB4-4F5E-A863-1E092D5F637E",
              "versionEndIncluding": "4.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets."
    }
  ],
  "id": "CVE-2005-2342",
  "lastModified": "2024-11-20T23:59:21.030",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-12-31T05:00:00.000",
  "references": [
    {
      "source": "cret@cert.org",
      "url": "http://secunia.com/advisories/18277"
    },
    {
      "source": "cret@cert.org",
      "url": "http://securitytracker.com/id?1015427"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
    },
    {
      "source": "cret@cert.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/392920"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.securityfocus.com/bid/16100"
    },
    {
      "source": "cret@cert.org",
      "url": "http://www.vupen.com/english/advisories/2006/0011"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/18277"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1015427"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/392920"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/16100"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/0011"
    }
  ],
  "sourceIdentifier": "cret@cert.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ghsa-fg8p-962v-hgm6

Vulnerability from github

Published

2022-05-01 02:07

Modified

2022-05-01 02:07

Details

Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2005-2342"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-12-31T05:00:00Z",
    "severity": "HIGH"
  },
  "details": "Research in Motion (RIM) BlackBerry Router allows remote attackers to cause a denial of service (communication disruption) via crafted Server Routing Protocol (SRP) packets.",
  "id": "GHSA-fg8p-962v-hgm6",
  "modified": "2022-05-01T02:07:23Z",
  "published": "2022-05-01T02:07:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-2342"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18277"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1015427"
    },
    {
      "type": "WEB",
      "url": "http://www.blackberry.com/knowledgecenterpublic/livelink.exe/fetch/2000/8021/728075/728850/728215/?nodeid=1167898"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/392920"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/16100"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/0011"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2005-2342

Vulnerability from cvelistv5

var-200512-0645

Vulnerability from variot

gsd-2005-2342

Vulnerability from gsd

cve-2005-2342

Vulnerability from fkie_nvd

ghsa-fg8p-962v-hgm6

Vulnerability from github

Tags

Sightings

Nomenclature