Research In Motion has released an “interim security update” for BlackBerry Enterprise Server (BES) 5.0 Service Pack 2 (SP2) for Microsoft Exchange and IBM Lotus Domino, as well as their free BES Express product, due to a vulnerability that could allow access to BES infrastructure, or be used to launch Denial of Service attacks.
From RIM: “The vulnerability could allow a malicious individual to cause buffer overflow errors, leading to a Denial of Service (DoS) condition or possibly arbitrary code execution on the computer that the BlackBerry Attachment Service runs on. Successful exploitation of this issue requires a malicious individual to persuade a BlackBerry smartphone user to open a specially crafted PDF file on a BlackBerry smartphone that is associated with a user account on a BlackBerry Enterprise Server. The PDF file may be attached to an email message, or the BlackBerry smartphone user may retrieve it from a web site using the Get Link menu item on the BlackBerry smartphone.”
The flaw is once again related to the troublesome BlackBerry Attachment Service’s PDF distiller component. RIM issued at least 3 different PDF-distiller-related security updates since 2008. RIM is advising BES administrators to update their BES software for Exchange and Lotus Domino immediately, but to do so with caution, since performing the update incorrectly can lead to additional issues.
Details regarding the BES flaw and the update process are at RIM’s Technical Solution Center.
Download the security patch for Exchange and Lotus Domino here.