RIM Issues Patch For Possible Security Breach, BES Only
Techtree.com posted a story yesterday about RIM having issued a patch that will cover a possible security breach, if it’s exploited by hackers. There aren’t details of the patch but it’s being stressed how important this breach is, and it only applies to PDF attachments. RIM has offered a workaround for Administration and advisement for users.
The problem is that there are several vulnerabilities in the PDF distiller of some of the released versions of the BlackBerry Attachment Service portion of the BlackBerry Enterprise Server. This could let someone with malicious intent to send an email with a specially designed PDF file, which when it’s opened to read on the BlackBerry that is associated with an account on a BlackBerry Enterprise Server can cause memory corruption and possibly lead to arbitrary code execution on the computer that plays host to the Blackberry Attachment Service portion of the BlackBerry Enterprise Server.
And to be sure it’s clear the following must be pointed out:
-
does not affect the BlackBerry Internet Service software and BlackBerry Internet Service users
-
does not require a software update for the BlackBerry Device Software or any other changes to BlackBerry smartphones
-
relates to a component of the BlackBerry Enterprise Server and BlackBerry Professional Software to be updated by administrators only
For best practices, RIM is recommending that BlackBerry smartphone users open attachments from trusted and reliable sources only.
[via: Techtree.com]
Can check to see if my phone has had security breech?
Richard,
I would highly recommend SMobile Security Shield Standard Edition if you are concerned. They are the ones who identified the Etisalat spyware. Especially if you are opening attachments, it’s always good to be prepared.
Susan