BlackBerry maker fixes PDF flaw that could crash server

By

BlackBerry has fixed a PDF distiller vulnerability in the BlackBerry Attachment Service, which runs on the BlackBerry Enterprise Server.


The maker of the BlackBerry mobile device has fixed a PDF distiller vulnerability in the BlackBerry Attachment Service, which runs on the BlackBerry Enterprise Server.

Attackers could exploit the flaw if they are able to trick a user into opening a malicious PDF file attachment as part of an email, BlackBerry has said in an advisory. That could result in a crash of the Enterprise Server, which supports the popular smartphones.

Canada-based Research in Motion (RIM) said on Friday that it fixed the bug in BlackBerry Enterprise Server versions 4.1.3 through 4.1.5.

"There were no customer reports of any actual problems relating to this vulnerability, and RIM has since provided software updates that resolve the issue," RIM said in a statement.

The latest Enterprise Server version, 4.1.6 for Microsoft Exchange and IBM Lotus Domino, was not affected by the vulnerability, RIM said.

There are an estimated 14 million BlackBerry users worldwide.

See original article on SC Magazine US
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
blackberryfixpatchpdfrepairsecuritysolve

Sponsored Whitepapers

Leverage Technologies: Industry-Tailored ERP Implementation for Growth and Compliance
Leverage Technologies: Industry-Tailored ERP Implementation for Growth and Compliance
Service Over Signatures: The Truth About No Lock-In IT
Service Over Signatures: The Truth About No Lock-In IT
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Wasabi Reveals Hidden Costs and Cloud Storage Shifts in ANZ for 2025
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.

Events

Most Read Articles

CBA using facial recognition logins to verify disputed payments

CBA using facial recognition logins to verify disputed payments
Qantas contacted by "potential cyber criminal"

Qantas contacted by "potential cyber criminal"
SA Power Networks tackles IAM, cloud security under five-year strategy

SA Power Networks tackles IAM, cloud security under five-year strategy
Qantas facing 'significant' data theft after cyber attack

Qantas facing 'significant' data theft after cyber attack
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?