Research in Motion (RIM) has offered a fix to address a vulnerability in the BlackBerry desktop manager.
Security advisory KB19701 claimed that a malicious user could perform an attack designed to deceive the legitimate user into clicking on a link to a malicious website that appears to be from a trusted source. If a user chose to access that site from the computer that is running the BlackBerry desktop manager, they may be able to perform remote code execution using the legitimate user's privileges on the computer.
The BlackBerry desktop manager does not need to be running for a malicious user to exploit this vulnerability. The vulnerability was given a CVSS severity rating of 9.3 and applies to BlackBerry desktop software version 5.0 and earlier on all platforms, so it warrants immediate attention.
The United States computer emergency readiness team (US-CERT) encouraged users to review the advisory and apply any necessary updates.
See original article on scmagazineus.com
RIM offers patch for Blackberry desktop manager
By
SC Australia Staff
on Nov 9, 2009 11:11AM
Risk of remote code execution.
Got a news tip for our journalists? Share it with us anonymously here.
Partner Content
Promoted Content
Delivering customer-centric government
Partner Content
Why your organisation's perimeter cybersecurity model is outdated
Partner Content
Setting a digital trajectory for Victoria's courts system
Promoted Content
New report reveals opportunities to address weak security in APAC organisations
Sponsored Whitepapers
Tomago Aluminium improves SAP environment performance, security with Red Hat and IBM
Future of work: Support your distributed HR workforce with digital document processes
Develop a resiliency strategy that integrates risk analysis & continuity management
.jpg&w=100&c=1&s=0)
IBM Maximo: Manage any asset, anytime, any place with mobile EAM
.jpg&w=100&c=1&s=0)
Optimise your operations with APM and AI-Powered insights
