Arbitrary User Account Access Vulnerability in BlackBerry Collaboration Service

Arbitrary User Account Access Vulnerability in BlackBerry Collaboration Service

CVE-2011-0290 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

The BlackBerry Collaboration Service in Research In Motion (RIM) BlackBerry Enterprise Server (BES) 5.0.3 through MR4 for Microsoft Exchange and Lotus Domino allows remote authenticated users to log into arbitrary user accounts associated with the same organization, and send messages, read messages, read contact lists, or cause a denial of service (login unavailability), via unspecified vectors.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.