CVE-2011-0290

{"id": "CVE-2011-0290", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-10-21T10:55:03.757", "references": [{"url": "http://secunia.com/advisories/46370", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1026179", "source": "cve@mitre.org"}, {"url": "http://www.blackberry.com/btsc/KB28524", "tags": ["Exploit", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.osvdb.org/76286", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/50064", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/70519", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "The BlackBerry Collaboration Service in Research In Motion (RIM) BlackBerry Enterprise Server (BES) 5.0.3 through MR4 for Microsoft Exchange and Lotus Domino allows remote authenticated users to log into arbitrary user accounts associated with the same organization, and send messages, read messages, read contact lists, or cause a denial of service (login unavailability), via unspecified vectors."}, {"lang": "es", "value": "BlackBerry Collaboration Service en Research In Motion (RIM) BlackBerry Enterprise Server (BES) v5.0.3 a trav\u00e9s de MR4 para Microsoft Exchange y Lotus Domino permite, a usuarios remotos autenticados, a acceder a cuentas de usuario de su elecci\u00f3n asociados con la misma organizaci\u00f3n, y enviar mensajes, leer los mensajes, leer las listas de contactos o causar una denegaci\u00f3n de servicio (indisponibilidad de inicio de sesi\u00f3n), a trav\u00e9s de vectores no especificados."}], "lastModified": "2017-08-17T01:33:26.337", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:rim:blackberry_enterprise_server:5.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "11FF9320-7C94-4700-81A8-E7D7694EB97D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:lotus:domino:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EB1DDF69-2820-4ADA-BB83-1E9704AF3CC6"}, {"criteria": "cpe:2.3:a:microsoft:exchange_server:*:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "261FB692-DD0F-494F-A25A-AFCC00BE4585"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}