RIM issues critical BlackBerry patch
Wednesday, July 23, 2008 10:49 AM
Research in Motion has released a patch for a security flaw in BlackBerry Enterprise Server, which exposed corporate networks to hackers via a maliciously crafted PDF document.
Research in Motion has released a patch for a security flaw in BlackBerry Enterprise Server, which exposed corporate networks to hackers via a maliciously crafted PDF document.
RIM announced the "highly critical" security advisory two weeks ago, detailing a booby-trapped PDF that could exploit a hole in RIM's server software to gain remote access to corporate networks.
The flaw affected the BlackBerry Attachment Service--a function within BlackBerry Enterprise Server (BES) that is used to process PDF attachments and make them readable by BlackBerry users on that network.
The flaw did not expose BlackBerry devices to attack, but could expose e-mail servers on the same network as BES to attack, Sense of Security's principal consultant, Jason Edelstein told ZDNet Asia's sister site ZDNet Australia.
RIM's initial workaround was to prevent the BlackBerry Attachment Service from processing PDF files within the BlackBerry Enterprise Server, however, a patch is now available from RIM's Web site.
» Blades for superior performance
There are currently no comments for this post.