The vulnerability exists in a Lotus Notes Intellisync DLL that the BlackBerry Desktop Manager uses. It allows a malicious user to perform an attack that leverages social engineering to achieve remote code execution. The flaw affects BlackBerry Desktop Software version 5.0 and earlier (on all platforms) It carries a severity score (CVSS) rating of 9.3.3. In addition to the patch, RIM also offers a few mitigations: The patch covers the vulnerability in an email message, in a browser, or instant message.
Source: https://threatpost.com/critical-flaw-blackberry-desktop-manager-software-110609/73046/