Wed, Jan 14 2009 10:03
BlackBerry Security Advisories
Research In Motion has released Security Advisories KB17118 and KB17119
to address vulnerabilities in the PDF Distiller of the BlackBerry
Attachment Service for BlackBerry Unite and BlackBerry Enterprise
Server. The vulnerabilities are due to the improper processing of PDF
files within the Distiller component of the BlackBerry Attachment
Service. By convincing a user to open a maliciously crafted PDF
attachment on a BlackBerry smartphone, an attacker may be able to
execute arbitrary code on the system running the BlackBerry Attachment
US-CERT encourages users to review BlackBerry Security Advisories KB17118 and KB17119 and apply the updates or implement the workarounds listed in the documents to help mitigate the risk.
US-CERT will provide additional information as it becomes available.
Filed under: Advisories / Bulletins