PT-2013-6115 · Microsoft+2 · Windows+2
Published
2013-11-16
·
Updated
2017-08-29
·
CVE-2013-6798
CVSS v2.0
5.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
BlackBerry Link versions prior to 1.2.1.31 on Windows
BlackBerry Link versions prior to 1.1.1 build 39 on Mac OS X
Description
The issue allows context-dependent attackers to bypass intended restrictions on remote file-access folders via IPv6 WebDAV requests. This occurs because the software does not properly determine the user account for execution of Peer Manager in certain situations involving successive logins with different accounts.
Recommendations
For BlackBerry Link on Windows, update to version 1.2.1.31 or later.
For BlackBerry Link on Mac OS X, update to version 1.1.1 build 39 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Blackberry Link
Macos X
Windows