ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

RIM: Disable JavaScript in BlackBerry Browser

By | March 15, 2011, 12:27pm PDT

Summary: Research in Motion (RIM) is urging BlackBerry users to disable JavaScript in the smartphone’s browser to block exploits from a security vulnerability showcased at this year’s CanSecWest Pwn2Own contest.

Research in Motion (RIM) is urging BlackBerry users to disable JavaScript in the smartphone’s browser to block exploits from a security vulnerability showcased at this year’s CanSecWest Pwn2Own contest.

The vulnerability, which exists in the open source WebKit browser engine provided in BlackBerry Device Software version 6.0 and later, was exploited to hack into a BlackBerry Torch 9800 smart phone to steal the contact list and image database.

In response to the hack, RIM issued a security advisory to acknowledge the flaw and suggest a temporary mitigation until a comprehensive patch is issued.

From the advisory:

follow Ryan Naraine on twitter

The issue could result in remote code execution on affected BlackBerry smartphones. Successful exploitation of the vulnerability requires the user to browse to a website that the attacker has maliciously designed. A successful exploit could allow the attacker to use the BlackBerry Browser to access user data stored on the media card and in the built-in media storage on the BlackBerry smartphone, but not to access email and other personal information on the file system of the BlackBerry smartphone.

The company suggests that users of the BlackBerry Device Software version 6.0 and later disable the use of JavaScript in the BlackBerry Browser to prevent exploitation of the vulnerability. The issue is not in JavaScript but the use of JavaScript is necessary to exploit the vulnerability.

RIM said it is investigating the issue to determine the best resolution for protecting BlackBerry smartphone users but did not provide a timeline for issuing a fix.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Research In Motion Ltd., JavaScript, Scripting Languages, Software/Web Development, Web Development, Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues.

Disclosure

Ryan Naraine

The most important disclosure is of my employment with Kaspersky Lab as a member of the global research and analysis team. Kaspersky Lab is a global company specializing in anti-malware and secure content management technologies. I do not own stocks or other investments in any technology company.

Biography

Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content management technologies.

Prior to joining Kaspersky Lab, Ryan was Editor-at-Large/Security at eWEEK, leading the magazine's and Web site's coverage of Internet and computer security issues and managing the popular SecurityWatch blog, covering the daily threats, vulnerabilities and IT security technologies. He also covered IT security, hacker attacks and secure content management topics for Jupiter Media's internetnetnews.com.

Ryan can be reached at naraine SHIFT 2 gmail.com. For daily updates on Ryan's activities, follow him on Twitter.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
16
Comments
Add Your Opinion

Join the conversation!

Just In

dsds
jywhy888 7th Mar
Ice Players Stick http://www.chinawholesaletown.com/wholesale-Bar-Caddy/ Wholesale Coaster Corner Flag
Pet Carrier http://www.chinawholesaletown.com/wholesale-Ring-Mugs/ Sport Items Wholesale Pedometer
Silicone Products http://www.chinawholesaletown.com/wholesale-Bag-Hanger/ Wholesale Puzzle Wholesale Mobile Phone
Wholesale Apron http://www.chinawholesaletown.com/wholesale-Duck-Toys/ Home Appliances Wholesale Pin
Wholesale Knife http://www.chinawholesaletown.com/wholesale-Whistle-Buckle/ Manicure Set Dog Waste Bag Dispenser
Wholesale Clothing http://www.chinawholesaletown.com/wholesale-Wine-Tote-Bag/ Cake Towel Wholesale Ruler
Poncho Raincoat http://www.chinawholesaletown.com/wholesale-Foam-Visor/ Photo Frame Wine Pouch
Wholesale Clothes Rack http://www.chinawholesaletown.com/wholesale-Metal-Money-Bank/ Highlighter Pen Waterproof Hard Case
Ring Mug http://www.chinawholesaletown.com/wholesale-Digital-Money-Bank/ Wholesale Mat Wholesale Cooler
Gloves Clapper http://www.chinawholesaletown.com/wholesale-Tube-Cooler/ Magnifier Ruler Patient Care Products
Glass Coaster http://www.chinawholesaletown.com/wholesale-Newtons-Cradle/ Pet Supplies Wholesale Clothes Rack
Name Card Holder http://www.chinawholesaletown.com/wholesale-Bump-Cap/ Wholesale Magnifier Wholesale Sticker
Highlighter Pen http://www.chinawholesaletown.com/wholesale-Foldable-Frisbee-In-Pouch/ Wholesale Massager Automotive Products
Hair Products http://www.chinawholesaletown.com/wholesale-Bag-Hanger/ Safety Products Jamaican Man Ashtray
Wholesale Umbrella http://www.chinawholesaletown.com/wholesale-Whistle-Buckle/ Lady Beauty Care Promotional Gifts
Wholesale lable http://www.chinawholesaletown.com/wholesale-Hockey-Set/ Wholesale Knife Mini DV
Wholesale Mat http://www.chinawholesaletown.com/wholesale-Pet-Poo-Pick-Bag/ Wholesale Lighter Pet Supplies
Wholesale Swimming Products http://www.chinawholesaletown.com/wholesale-Bag-Clip/ Wholesale Furniture Wholesale Bag
Teeth whitening Pen http://www.chinawholesaletown.com/wholesale-Vibram-Five-Finger-Shoes/ Wholesale Bookmark Bottle Holder
Wholesale Frisbee http://www.chinawholesaletown.com/wholesale-Trolley-Coin-Keychains/ Water Filter Bottle Digital Spoon Scale
Gift Box http://www.chinawholesaletown.com/wholesale-Wedding-Favors/ Wholesale Bangle Water Spray Fan
Wholesale Clap Hands http://www.chinawholesaletown.com/wholesale-Notebook-Calculator/ Fleece Blanket Cleaner Products
Wholesale Puzzle http://www.chinawholesaletown.com/wholesale-Foam--Hand/ Electroluminescent Fishing Supplies
Wholesale Carabiner http://www.chinawholesaletown.com/wholesale-Wine-Tote-Bag/ Wholesale Stapler Wholesale Whistle
Audio Video Equipment http://www.chinawholesaletown.com/wholesale-Cake-Towels/ Reflective Safety Vest Wholesale Toys
Mini DV http://www.chinawholesaletown.com/wholesale-BMI-Tape-Measure/ Wine Bottle Cove Wholesale Golf Products
Advertising Material http://www.chinawholesaletown.com/wholesale-Bottle-Carriers/ Wholesale Belt Wholesale Bookmark
Lady Beauty Care http://www.chinawholesaletown.com/wholesale-Watch-GPS-Tracker/ Audio Video Equipment Ring Whistle
Freezer Mug http://www.chinawholesaletown.com/wholesale-Bottle-Holder/ Jute Bag Wholesale Cap
Wholesale Scarf http://www.chinawholesaletown.com/wholesale-Washing-Powder/ Wholesale Raincoat Wholesale Mug
Coin Bank http://www.chinawholesaletown.com/wholesale-Burlap-Drawstring-Bags/ Consumer Electronics Wholesale Mp3
Wholesale Glasses http://www.chinawholesaletown.com/wholesale-Octagon-Retractable-Clothesline_112230/ Wholesale Lanyard Wholesale Clocks
Wholesale Tellurion http://www.chinawholesaletown.com/wholesale-Jewelry-Loupe/ Wholesale Binoculars Silicone Products
Manicure Set http://www.chinawholesaletown.com/wholesale-Fish-Scale/ Pet Carrier Wholesale Umbrella
Inflatable Products http://www.chinawholesaletown.com/wholesale-Luggage-Gripper/ Newtons Cradle Promotional Gifts
Industrial Supplies http://www.chinawholesaletown.com/wholesale-BBQ-Grill/ Sport Support Products Wholesale Speakers
Wholesale Mouse http://www.chinawholesaletown.com/wholesale-UV-Pen/ Electrical Gifts Wholesale Watch
Wholesale Golf Products http://www.chinawholesaletown.com/wholesale-Cell-Phone-Cleaner/ Wholesale Badge Wholesale iPod iPhone
Wholesale First Aid Kit http://www.chinawholesaletown.com/wholesale-Collapsible-Water-Bottle/ Wholesale Gift Bags Wholesale Scissors
View in thread
0 Votes
+ -
Awesome!
eidris@... 15th Mar 2011
Just great....
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
lovedong 13th Sep
Awesome post! replica watches
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
reginebautista 7th Nov
freepuzzlegameonline.com / full-house-design.com

Free Puzzle Games
House Design
0 Votes
+ -
join group
lorain123 24th Nov
HOTELS NEAR DISNEYLAND|
FREE PRINTABLE RENTAL LEASE AGREEMENT
PRINTBLE REAL ESTATE FORMS
FOOD FOR ALL|
PRINTABLE LEGAL FORMS
0 Votes
+ -
dsds
jywhy888 7th Mar
Ice Players Stick http://www.chinawholesaletown.com/wholesale-Bar-Caddy/ Wholesale Coaster Corner Flag
Pet Carrier http://www.chinawholesaletown.com/wholesale-Ring-Mugs/ Sport Items Wholesale Pedometer
Silicone Products http://www.chinawholesaletown.com/wholesale-Bag-Hanger/ Wholesale Puzzle Wholesale Mobile Phone
Wholesale Apron http://www.chinawholesaletown.com/wholesale-Duck-Toys/ Home Appliances Wholesale Pin
Wholesale Knife http://www.chinawholesaletown.com/wholesale-Whistle-Buckle/ Manicure Set Dog Waste Bag Dispenser
Wholesale Clothing http://www.chinawholesaletown.com/wholesale-Wine-Tote-Bag/ Cake Towel Wholesale Ruler
Poncho Raincoat http://www.chinawholesaletown.com/wholesale-Foam-Visor/ Photo Frame Wine Pouch
Wholesale Clothes Rack http://www.chinawholesaletown.com/wholesale-Metal-Money-Bank/ Highlighter Pen Waterproof Hard Case
Ring Mug http://www.chinawholesaletown.com/wholesale-Digital-Money-Bank/ Wholesale Mat Wholesale Cooler
Gloves Clapper http://www.chinawholesaletown.com/wholesale-Tube-Cooler/ Magnifier Ruler Patient Care Products
Glass Coaster http://www.chinawholesaletown.com/wholesale-Newtons-Cradle/ Pet Supplies Wholesale Clothes Rack
Name Card Holder http://www.chinawholesaletown.com/wholesale-Bump-Cap/ Wholesale Magnifier Wholesale Sticker
Highlighter Pen http://www.chinawholesaletown.com/wholesale-Foldable-Frisbee-In-Pouch/ Wholesale Massager Automotive Products
Hair Products http://www.chinawholesaletown.com/wholesale-Bag-Hanger/ Safety Products Jamaican Man Ashtray
Wholesale Umbrella http://www.chinawholesaletown.com/wholesale-Whistle-Buckle/ Lady Beauty Care Promotional Gifts
Wholesale lable http://www.chinawholesaletown.com/wholesale-Hockey-Set/ Wholesale Knife Mini DV
Wholesale Mat http://www.chinawholesaletown.com/wholesale-Pet-Poo-Pick-Bag/ Wholesale Lighter Pet Supplies
Wholesale Swimming Products http://www.chinawholesaletown.com/wholesale-Bag-Clip/ Wholesale Furniture Wholesale Bag
Teeth whitening Pen http://www.chinawholesaletown.com/wholesale-Vibram-Five-Finger-Shoes/ Wholesale Bookmark Bottle Holder
Wholesale Frisbee http://www.chinawholesaletown.com/wholesale-Trolley-Coin-Keychains/ Water Filter Bottle Digital Spoon Scale
Gift Box http://www.chinawholesaletown.com/wholesale-Wedding-Favors/ Wholesale Bangle Water Spray Fan
Wholesale Clap Hands http://www.chinawholesaletown.com/wholesale-Notebook-Calculator/ Fleece Blanket Cleaner Products
Wholesale Puzzle http://www.chinawholesaletown.com/wholesale-Foam--Hand/ Electroluminescent Fishing Supplies
Wholesale Carabiner http://www.chinawholesaletown.com/wholesale-Wine-Tote-Bag/ Wholesale Stapler Wholesale Whistle
Audio Video Equipment http://www.chinawholesaletown.com/wholesale-Cake-Towels/ Reflective Safety Vest Wholesale Toys
Mini DV http://www.chinawholesaletown.com/wholesale-BMI-Tape-Measure/ Wine Bottle Cove Wholesale Golf Products
Advertising Material http://www.chinawholesaletown.com/wholesale-Bottle-Carriers/ Wholesale Belt Wholesale Bookmark
Lady Beauty Care http://www.chinawholesaletown.com/wholesale-Watch-GPS-Tracker/ Audio Video Equipment Ring Whistle
Freezer Mug http://www.chinawholesaletown.com/wholesale-Bottle-Holder/ Jute Bag Wholesale Cap
Wholesale Scarf http://www.chinawholesaletown.com/wholesale-Washing-Powder/ Wholesale Raincoat Wholesale Mug
Coin Bank http://www.chinawholesaletown.com/wholesale-Burlap-Drawstring-Bags/ Consumer Electronics Wholesale Mp3
Wholesale Glasses http://www.chinawholesaletown.com/wholesale-Octagon-Retractable-Clothesline_112230/ Wholesale Lanyard Wholesale Clocks
Wholesale Tellurion http://www.chinawholesaletown.com/wholesale-Jewelry-Loupe/ Wholesale Binoculars Silicone Products
Manicure Set http://www.chinawholesaletown.com/wholesale-Fish-Scale/ Pet Carrier Wholesale Umbrella
Inflatable Products http://www.chinawholesaletown.com/wholesale-Luggage-Gripper/ Newtons Cradle Promotional Gifts
Industrial Supplies http://www.chinawholesaletown.com/wholesale-BBQ-Grill/ Sport Support Products Wholesale Speakers
Wholesale Mouse http://www.chinawholesaletown.com/wholesale-UV-Pen/ Electrical Gifts Wholesale Watch
Wholesale Golf Products http://www.chinawholesaletown.com/wholesale-Cell-Phone-Cleaner/ Wholesale Badge Wholesale iPod iPhone
Wholesale First Aid Kit http://www.chinawholesaletown.com/wholesale-Collapsible-Water-Bottle/ Wholesale Gift Bags Wholesale Scissors
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
cell phone insurance 15th Mar 2011
Which mobile OS haven't been hacked? I know Android and BBery have made news recently.

---------------------
www.toughcell.com
0 Votes
+ -
The "best resolution" ...
Too Old For IT 16th Mar 2011
The "best resolution" would be to have the fix deployed already.
0 Votes
+ -
That's nice...
arohatech1 23rd Mar 2011
Great!
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
myclub 1st Jul
http://www.52tube.com/
http://www.wctube.com/
http://www.cameporn.com/
http://www.escortbayan9.com/
tamam
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
talih Updated - 12th Aug
Great!!! thanks for sharing this information to us!
sesli chat sesli sohbet
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
arcondicionadoorg 13th Sep
yea, I know Android and BBery have made news recently, Thanks!
Massagistas
Acompanhantes
Ar Condicionado
0 Votes
+ -
best
juvysan1234 14th Oct
best food for all |
cheap hotels near disneyland |
printable real estate forms |
free printable rental lease agreement |
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
weblaranja 1st Nov
Thats a great tip!
acompanhantes rj
garotas de programa rj
0 Votes
+ -
join group
lorain123 24th Nov
HOTELS NEAR DISNEYLAND|
FREE PRINTABLE RENTAL LEASE AGREEMENT
PRINTBLE REAL ESTATE FORMS
FOOD FOR ALL|
PRINTABLE LEGAL FORMS
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
Hobos81 3rd Feb
Seems easier said than done. I own a Blackberry myself. Not that good to be honest. service is quite bad. A simple site like http://24optionreview.info doesn't load properly.
0 Votes
+ -
RE: RIM: Disable JavaScript in BlackBerry Browser
abirahmed 8th Feb
So it's that simple?! I supposed it to be more complicated than it seems to be. What ever,thanks for such a nice display.
tom@Scottrade review

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix