The BlackBerry Universal Device Service in BlackBerry Enterprise Service (BES) 10.0 through 10.1.2 does not properly restrict access to the JBoss Remote Method Invocation (RMI) interface, which allows remote attackers to upload and execute arbitrary packages via a request to port 1098.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2022-10-03T16:14:45
Updated: 2022-10-03T16:14:45
Reserved: 2022-10-03T00:00:00
Link: CVE-2013-3693
JSON object: View
NVD Information
Status : Modified
Published: 2013-10-11T22:55:36.267
Modified: 2023-11-07T02:16:00.787
Link: CVE-2013-3693
JSON object: View
Redhat Information
No data.
CWE