All the latest UK technology news, reviews and analysis


BlackBerry posts patch for Enterprise Server flaw

20 Feb 2013
Research In Motion logo

BlackBerry has told administrators to patch their BlackBerry Enterprise Server (BES) systems following the discovery of a security vulnerability in the platform.

The company formerly known as Research in Motion said that the flaw, which affects the handling of certain Tiff image files, could leave server systems vulnerable to remote code execution attacks. BlackBerry has given the vulnerability a severity rating of 10.0, it's highest.

According to BlackBerry, the vulnerability exists in the handling of image files in the BlackBerry Messaging Service. When handling image files embedded in instant messages, the component can experience at attack which leaves a server vulnerable to remote code execution operations.

To address the flaw, BlackBerry said that it has issued an update to the BES platform. The company is recommending that all system administrators running the platform update their servers to prevent attack.

The security fix, which was first issued by the company last week, has gained further public attention in recent days, potentially increasing the risk for attacks in the wild. BlackBerry has not received any reports of attacks.

BlackBerry is far from alone in its efforts to patch security vulnerabilities. exactly one week ago, Microsoft posted its monthly security fix, while Oracle has been working to ward off a series of Java vulnerabilities which have triggered calls for users to disable the platform whenever possible.

BlackBerry's release comes as the company is pressing forward with what many pundits believe is among the most important releases in its history. The BlackBerry 10 platform has been cited as a critical point in the company's efforts to reverse its fortunes and regain a foothold in the smartphone market.

 

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Windows 7 end of mainstream support

What are your plans for when Microsoft ends mainstream support for Windows 7 in January 2015?
10%
9%
3%
64%
14%

Popular Threads

Powered by Disqus
LG G3 in gold black and white

LG G3 vs Galaxy S5 video

We pit the two Korean firms' flagship smartphones against each other

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

ElasticSearch Developer – London, Blue Chip Retailer – to £600 day

ElasticSearch Developer – London, Blue Chip Retailer...

Software Security Sales - Cyber/eDiscovery/Forensics - Public sector

Smashin' role coming up for a Senior Sales Executive...

Digital Marketing / Retail "Apps" - Sales Person

Our client is a leading name in the ecommerce and retailing...

Product Marketing Manager - BI/Predictive Analytics

Analytics and Big Data software are what are changing...
To send to more than one email address, simply separate each address with a comma.