RIM issues security patches for BlackBerry

Interim patches address critical security flaws that could allow a malicious PDF file to cause memory corruption or lead to arbitrary code execution on computers that host the BlackBerry Attachment service.

Research In Motion issued on Monday interim patches to address critical security flaws in BlackBerry software.

The flaws affect BlackBerry Enterprise Server software version 4.1 Service Pack 3 through Service Pack 6. The BlackBerry Professional Software 4.1 Service Pack 4 is also affected, RIM notes in its security advisory.

RIM is asking corporate customers to install an interim patch for the BlackBerry Enterprise Server and an interim patch for the BlackBerry Professional Software.

RIM also advises BlackBerry users to open PDF attachments only from "trusted sources." The company notes in its security advisory:

Multiple security vulnerabilities exist in the PDF distiller of some released versions of the BlackBerry Attachment Service. These vulnerabilities could enable a malicious individual to send an email message containing a specially crafted PDF file, which when opened for viewing on a Blackberry smartphone, could cause memory corruption and possibly lead to arbitrary code execution on the computer that hosts the BlackBerry Attachment service.

Such security flaws will do little to bolster President-elect Barack Obama's hopes for keeping his BlackBerry while in the White House .

Tags:
Security
About the author

    Dawn Kawamoto covered enterprise security and financial news relating to technology for CNET News.

     

    Join the discussion

    Conversation powered by Livefyre

    Show Comments Hide Comments
    Latest Galleries from CNET
    A roomy range from LG (pictures)
    This plain GE range has all of the essentials (pictures)
    Sony's 'Interview' heard 'round the world (pictures)
    Google Lunar XPrize: Testing Astrobotic's rover on the rocks (pictures)
    CNET's 15 favorite How Tos of 2014
    CNET's 15 most popular How Tos of 2014