Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

7/18/2008
05:34 PM
50%
50%

RIM Fixes BlackBerry Enterprise Server Vulnerability

The flaw could let malicious PDFs cause problems with the BlackBerry Enterprise Server.

Research In Motion has patched a critical vulnerability in its BlackBerry Enterprise Servers that left companies vulnerable to malicious PDFs.

The bug was in the PDF distiller component of the BlackBerry Attachment Service, which runs on the BlackBerry Enterprise Server. It affected how the Adobe document format is processed, and could potentially give hackers a way into a company's network.

Malicious PDFs attached to e-mail messages opened on a smartphone could cause problems on the computer that the BlackBerry Attachment Service runs on, according to RIM. The server, not the individual handset, was at risk.

"If a BlackBerry smartphone user on BlackBerry Enterprise Server opens and views the specifically crafted PDF file attachment on the BlackBerry smartphone, the arbitrary code execution could compromise the computer," read a warning from RIM.

IT departments using BES software version 4.1 Service Pack (SP) 3 through BES v4.1 SP5 are at risk, as are users of BlackBerry Unite version 1.0 SP1 bundle 36 or earlier, according to RIM. BlackBerry Unite is a service that lets users access shared files via BlackBerry.

RIM first disclosed the vulnerability last week, and the company ranked it as a 9 on a scale of 0 to 10, with 10 representing the most critical flaw. The vulnerability gained attention after the U.S. Computer Emergency Readiness Team posted an alert Wednesday.

Prior to releasing the patch, RIM offered work-around instructions for administrators to prevent an attack by blocking PDF processing. The company received no reports of attacks, according to a RIM spokesperson.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How to Think Like a Hacker
Dr. Giovanni Vigna, Chief Technology Officer at Lastline,  10/10/2019
7 SMB Security Tips That Will Keep Your Company Safe
Steve Zurier, Contributing Writer,  10/11/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: The old using of sock puppets for Shoulder Surfing technique. 
Current Issue
7 Threats & Disruptive Forces Changing the Face of Cybersecurity
This Dark Reading Tech Digest gives an in-depth look at the biggest emerging threats and disruptive forces that are changing the face of cybersecurity today.
Flash Poll
2019 Online Malware and Threats
2019 Online Malware and Threats
As cyberattacks become more frequent and more sophisticated, enterprise security teams are under unprecedented pressure to respond. Is your organization ready?
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-17667
PUBLISHED: 2019-10-17
Comtech H8 Heights Remote Gateway 2.5.1 devices allow XSS and HTML injection via the Site Name (aka SiteName) field.
CVE-2019-17666
PUBLISHED: 2019-10-17
rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.
CVE-2019-17607
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php servername parameter.
CVE-2019-17608
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php dbname parameter.
CVE-2019-17609
PUBLISHED: 2019-10-16
HongCMS 3.0.0 has XSS via the install/index.php dbusername parameter.