Stack-Based Buffer Overflow in BlackBerry Z10 due to qconnDoor Vulnerability
CVE-2014-2389

Currently unrated

Key Information:

Vendor: Blackberry
Status: Blackberry Os; Blackberry Z10
Vendor: CVE Published:; 12 April 2014

What is CVE-2014-2389?

A stack-based buffer overflow vulnerability exists in a specific decryption function of the qconnDoor on BlackBerry Z10 devices. When developer mode is enabled, this flaw allows remote attackers to execute arbitrary code by sending specially crafted packets during a TCP session over a wireless network.

References

http://archives.neohapsis.com/archives/bugtraq/2014-04/00...

mailing-listx_refsource_BUGTRAQ

EPSS Score

14% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 12, 2014
Vulnerability Reserved
Mar 13, 2014

Blackberry

What is CVE-2014-2389?

References

EPSS Score

Timeline