Security patch issued for BlackBerry devices

13 Jan 2009

Research in Motion has issued an interim security patch designed to address critical security flaws that could affect users who open PDF attachments that contain malicious codes.

It is understood the security flaw affects the BlackBerry Enterprise Server software version 4.1 Service Pack 3, 4, 5 and 6.

RIM’s BlackBerry Professional Software 4.1 Service Pack 4 is also affected.

“Multiple security vulnerabilities exist in the PDF distiller of some released versions of the BlackBerry Attachment Service,” RIM said in a statement.

“These vulnerabilities could enable a malicious individual to send an email message containing a specially crafted PDF file, which when opened for viewing on a BlackBerry smart phone, could cause memory corruption and possibly lead to arbitrary code execution on the computer that hosts the BlackBerry Attachment Service,” RIM advised.

By John Kennedy

John Kennedy is a journalist who served as editor of Silicon Republic for 17 years