BlackBerry Desktop Manager ActiveX Control Remote Code Execution Vulnerability

BlackBerry Desktop Manager is prone to a remote code-execution vulnerability. This issue occurs in the Lotus Notes Intellisync ActiveX control provided by 'Inresobject.dll'.

An attacker can exploit this issue to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed attacks will likely cause denial-of-service conditions.

Versions prior to BlackBerry Desktop Manager 5.0.1 are vulnerable.


Privacy Statement
Copyright 2010, SecurityFocus