ie8 fix
madison

Zero Day

Ryan Naraine, Emil Protalinski and Dancho Danchev
Home / News & Blogs / Zero Day

RIM warns of BlackBerry code execution security flaws

By | August 10, 2011, 12:49pm PDT

Summary: Vulnerabilities exist in how the BlackBerry MDS Connection Service and the BlackBerry Messaging Agent process PNG and TIFF images for rendering on the BlackBerry smartphone.

Research in Motion (RIM) has issued an advisory to warn of the risk of remote code execution attacks on the BlackBerry Enterprise Server.

The company shipped a patch that covers a total of five documented vulnerabilities that could be exploited via PNG or TIFF images.

From the RIM advisory:follow Ryan Naraine on twitter

Vulnerabilities exist in how the BlackBerry MDS Connection Service and the BlackBerry Messaging Agent process PNG and TIFF images for rendering on the BlackBerry smartphone. Successful exploitation of any of these vulnerabilities might allow an attacker to gain access to and execute code on the BlackBerry Enterprise Server. Depending on the privileges available to the configured BlackBerry Enterprise Server service account, the attacker might also be able to extend access to other non-segmented parts of the network.

To exploit these vulnerabilities in how the BlackBerry MDS Connection Service processes PNG and TIFF images, an attacker would need to create a specially crafted web page and then persuade the BlackBerry smartphone user to click a link to that web page. The attacker could provide the link to the user in an email or instant message.

To exploit these vulnerabilities in how the BlackBerry Messaging Agent processes PNG and TIFF images, an attacker would need to embed specially crafted PNG and TIFF images in an email message and send the message to the BlackBerry smartphone user. The user does not need to click a link or an image, or view the email message, for the attack to succeed in this scenario.

Affected software includes:

  • BlackBerry® Enterprise Server version 5.0.1 through 5.0.3 MR2 for Microsoft Exchange
  • BlackBerry® Enterprise Server version 5.0.1 through 5.0.3 MR2 for IBM Lotus Domino
  • BlackBerry® Enterprise Server version 4.1.7 and version 5.0.1 through 5.0.1 MR3 for Novell GroupWise
  • BlackBerry® Enterprise Server Express version 5.0.1 through 5.0.3 for Microsoft Exchange
  • BlackBerry® Enterprise Server Express version 5.0.2 and 5.0.3 for IBM Lotus Domino

RIM said the BlackBerry smartphones and the BlackBerry Device Software are not affected by these vulnerabilities.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Research In Motion Ltd., Attacker, Vulnerability, Smart Phone, RIM BlackBerry, TIFF, PNG, Mobile Operating Systems, Handhelds, Security, Hardware, Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues.

Disclosure

Ryan Naraine

The most important disclosure is of my employment with Kaspersky Lab as a member of the global research and analysis team. Kaspersky Lab is a global company specializing in anti-malware and secure content management technologies. I do not own stocks or other investments in any technology company.

Biography

Ryan Naraine

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content management technologies.

Prior to joining Kaspersky Lab, Ryan was Editor-at-Large/Security at eWEEK, leading the magazine's and Web site's coverage of Internet and computer security issues and managing the popular SecurityWatch blog, covering the daily threats, vulnerabilities and IT security technologies. He also covered IT security, hacker attacks and secure content management topics for Jupiter Media's internetnetnews.com.

Ryan can be reached at naraine SHIFT 2 gmail.com. For daily updates on Ryan's activities, follow him on Twitter.

Related Discussions on TechRepublic

Did you know you can take part in these discussions with your ZDNet membership?
Ask a Question Start a Discussion
19
Comments
Add Your Opinion

Join the conversation!

Just In

Guzellik
SpOoNeRR 13th Aug
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet kanallar? ? radyo dinle ? radyo dinle ?
mirc ? ?et ? dul sohbet ? chat odalar? ? chat odalar? ?

? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? ?et ? ?et

t?rk chat - t?rk chat - ?et
odalar?
islami sohbet
dini sohbet
Deneme
View in thread
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
SinfoCOMAR 10th Aug
You scared me, by the title I thought the phones themselves where open to attack.
How about "RIM warns of BLACKBERRY ENTERPRISE SERVER (known as BES) code execution security flaws..."
"...BlackBerry smartphones and the BlackBerry Device Software are not affected by these vulnerabilities."
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
tech_ed@... 10th Aug
well, the article alone does enough to scare any admin!
The specially crafted image does not need to be viewed, clicked or manipulated in any way for this exploit to be affective...I don't know about you, but for me, this is quite scarey!
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
SinfoCOMAR 10th Aug
@tech_ed@... true... it reminds me of the PDF rendering flaw from around a year ago. I couldn't find if there where any exploits out there or if this was something RIM found on its own.
0 Votes
+ -
I Think ZDNET is owned by Apple
ernie_l_jackson 10th Aug
I don't know about you, but have any of you noticed a particularly negative tone to stories posted about RIM and the "BlackBerry" on ZDnet over the past week?

Here are some examples:
"Five reasons why you should forget the BlackBerry,"
"Is the BlackBerry Bold 9900 priced out of the consumer range at $349.99?" (What about the iphone?)
"BlackBerry Messenger 'used to perpetuate riots' in London,"
and of course today's Blackberry slam,
"RIM warns of BlackBerry code execution security flaws."

Gee I wonder what's next,
"Hitler and Stalin used Blackberry 'til Roosevelt gave iPhones to Russians ending World War II,"
How about,
"Elvis died on toilet while using Blackberry,"
Or,
"Bin Laden's final call for help made on a Blackberry."

For the record, I do not nor have I ever owned any RIM device. I have purchased and used Apple Computers over the years (since the old Apple II) and I did purchase my daughter an iPod Touch which I purchase songs and apps for through the iTunes store. I do not own an iPhone nor do I work for RIM or own any of their stock.

I also understand that Jim Balsile and RIM have not been as profitable as they once were, while Steve Jobs improving fortunes seem to be only eclipsed by those of Steve Balmer and Bill Gates.

Still, the bashing of Blackberry devices, especially on ZDnet seems to be getting ridiculous. Just because the iPhone is the "Flavor of the Month" tech device doesn't mean that everybody wants one (I don't own nor want a cell phone or any PDA device but I do have a pager). I wonder why ZdNet doesn't write an article between the cost comparison for service between the iPhone and the Backberry. Maybe the reason why all those British rioters are using the Blackberry is because they can't afford the iPhone or its service?

Did Zdnet ever have an article on how the iPhone 3 set your ear on fire? Or how the iPhone 4 antenna was so wimpy it wasn't even able to pick up an AM radio station?

The bottom lines are the Blackberry is far from a perfect device, as is the iPhone. Still millions in businesses and governments around the world have been able to depend on it in their daily work life. Others outside of business and government also enjoy their Blackberrys and other PDAs including iPhones. Yes, for those who use PDAs the iphone is a fantastic device (although there isn't an ap for wiping your a$$ yet). What iPhone columnists and enthusiasts fail to realize is there is more than one way to do things, and the iphone isn't for all PDA users, and it never will be. That is why, for PDAs, besides the iphone OS there is the Blackberry OS, the Windows Mobile Phone OS, the Android OS and yes, even the Palm OS (although there doesn't seem to be much time left for that one).

Some people buy Ford, others Toyota. Some Chrysler and many Honda. Some people are white, others are African American. There are those who are Asian Chinese and several North American Indian (although there was a concerted effort to wipe them out).

The "Apple can do no wrong stance" and "Blackberry is owned by the Devil" stance as taken by Zdnet must end if it is to be taken seriously as an independent critical objective thinking source of technological and computer news. If that means changing columnists, so be it.

Unless of course, ZDNet is owned by Apple Computer?
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
SinfoCOMAR 10th Aug
@ernie_l_jackson yesterday had a comment of mine on exactly the same subject flagged and deleted. Some articles in ZDnet.com do seem decidedly anti-RIM and pro-Apple biased.
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
codyssey 10th Aug
@SinfoCOMAR
with you on that one sinfo.
so when does the "i-freedom of speech" application come out for the i-phone....???
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
codyssey 10th Aug
@ernie_l_jackson
maybe their just one of the marketing echo subcontracted teams of.steve. by the way at leasr rim warns about it and looks into it, not like some other companies that with knowledge launch faulty phones and then lie a little bit more and then some...good heaven if we notice "negative tone?" man i am telling you YES. what worries me though is if this is due to editorial policy and lines or due to poor judgment and capacity of the writers..who knows. the only thing i know is, if blackberry is so lame for you zdnet, then why you keep slamming it and constantly comparing it to your i-phones....
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
Brandstetter 10th Aug
@ernie_l_jackson I like your Post ..
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
dwb124 11th Aug
@ernie_l_jackson I agree, it's odd, I also left a comment regarding the slant of a BB related article and it was promptly flagged and deleted.
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
Agnostic_OS Updated - 11th Aug
@ernie_l_jackson
Just putting the finishing touches to the iA$$ toilet tissue dispenser now! Fully WFFI aware! Estimated price $249.99.
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
RobertMoore12@... 12th Aug
@ernie_l_jackson I agree. Zdnet should be covering all platforms if they want to be taken seriously. There have been as many problems with the iphone as there has with any other phone. If this gets any worse I may unsubscribe and go with someone who isn't slanted only toward Apple.
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
SinfoCOMAR 12th Aug
@RobertMoore12@... You can tell they won't or don't want to support RIM, Blackberries have been around for many years.... most have data plans... yet... there is still no ZDNet app for Blackberry... only Android and iOS.
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
visited 11th Aug
egtga ethaet
0 Votes
+ -
Sohbet
SpOoNeRR 11th Aug
chat
mirc
liseli
chat
sohbet
0 Votes
+ -
Opinion
kristine13 11th Aug
I just paid $22.87 for an iPad2-64GB and my girlfriend loves her Panasonic Lumix GF 1 Camera that we got for $38.76 there arriving tomorrow by UPS. I will never pay such expensive retail prices in stores again. Especially when I also sold a 40 inch LED TV to my boss for $675 which only cost me $62.81 to buy. Here is the website we use to get it all from, BidsGet.com
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
RobertMoore12@... 12th Aug
Why do we have to endure advertizing in the comments for internet scams? Reference is to the getbids add right above. IT IS A SCAM.
0 Votes
+ -
RE: RIM warns of BlackBerry code execution security flaws
zafer12 13th Aug
Wow! I wasn't expecting a 5-star review. I would of picked this up regardless of the review because I loved the original, but it is a nice surpris

metin2 MMO games
metin2 pvp serverler
metin2 pvp serverler kurma
gm komutlar?
1299 gm komutlari
gm komutlari knight
mt2 pvp serverler kurma

mt2 giris
metin2 hile
metin2 hileler
mt2 kaydol
metin2 kaydol
metin2 resim
metin2 resimleri
mt2 resimleri


Wow! I wasn't expecting a 5-star review. I would of picked this up regardless of the review because I loved the original, but it is a nice surpris
mt2 MMO games
pvp serverler
pvp serverlar
mt2 hileler
mt2 hile
metin2 hileleri

metin2 at gorevleri
metin2 gorevler
metin2 itemleri

pvp serverlar


metin2 pvp
pvp server
knight gm kodlari

metin2 oyunu oyna



yonja
netlog
twitter turkce
twitter giris
mynet kaydol
imvu
mynet giris
mynet mirc indir
mynet mirc
facebok giris
facebok kaydol
facebok mirc
0 Votes
+ -
Sohbet Odaları
SpOoNeRR 13th Aug
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet kanallar? ? radyo dinle ? radyo dinle ?
mirc ? ?et ? dul sohbet ? chat odalar? ? chat odalar? ?

? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? ?et ? ?et

t?rk chat - t?rk chat - ?et
odalar?
islami sohbet
dini sohbet


Beni takip edenin gotune koyim =)
0 Votes
+ -
Guzellik
SpOoNeRR 13th Aug
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet odalar?
sohbet kanallar? ? radyo dinle ? radyo dinle ?
mirc ? ?et ? dul sohbet ? chat odalar? ? chat odalar? ?

? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? sohbet odalar? ? ?et ? ?et

t?rk chat - t?rk chat - ?et
odalar?
islami sohbet
dini sohbet
Deneme

Join the conversation!

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
ie8 fix
Click Here
ie8 fix

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources
ie8 fix
ie8 fix