PT-2013-6115 · Microsoft+2 · Windows+2

Publicado

2013-11-16

Atualizado

2017-08-29

CVE-2013-6798

CVSS v2.0

5.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:N

Name of the Vulnerable Software and Affected Versions BlackBerry Link versions prior to 1.2.1.31 on Windows BlackBerry Link versions prior to 1.1.1 build 39 on Mac OS X

Description The issue allows context-dependent attackers to bypass intended restrictions on remote file-access folders via IPv6 WebDAV requests. This occurs because the software does not properly determine the user account for execution of Peer Manager in certain situations involving successive logins with different accounts.

Recommendations For BlackBerry Link on Windows, update to version 1.2.1.31 or later. For BlackBerry Link on Mac OS X, update to version 1.1.1 build 39 or later.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264

Identificadores relacionados

CVE-2013-6798

Produtos afetados

Blackberry Link

Macos X

Windows

PT-2013-6115 · Microsoft+2 · Windows+2

CVE-2013-6798

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3