All the latest UK technology news, reviews and analysis

BlackBerry posts patch for Enterprise Server flaw

20 Feb 2013
Research In Motion logo

BlackBerry has told administrators to patch their BlackBerry Enterprise Server (BES) systems following the discovery of a security vulnerability in the platform.

The company formerly known as Research in Motion said that the flaw, which affects the handling of certain Tiff image files, could leave server systems vulnerable to remote code execution attacks. BlackBerry has given the vulnerability a severity rating of 10.0, it's highest.

According to BlackBerry, the vulnerability exists in the handling of image files in the BlackBerry Messaging Service. When handling image files embedded in instant messages, the component can experience at attack which leaves a server vulnerable to remote code execution operations.

To address the flaw, BlackBerry said that it has issued an update to the BES platform. The company is recommending that all system administrators running the platform update their servers to prevent attack.

The security fix, which was first issued by the company last week, has gained further public attention in recent days, potentially increasing the risk for attacks in the wild. BlackBerry has not received any reports of attacks.

BlackBerry is far from alone in its efforts to patch security vulnerabilities. exactly one week ago, Microsoft posted its monthly security fix, while Oracle has been working to ward off a series of Java vulnerabilities which have triggered calls for users to disable the platform whenever possible.

BlackBerry's release comes as the company is pressing forward with what many pundits believe is among the most important releases in its history. The BlackBerry 10 platform has been cited as a critical point in the company's efforts to reverse its fortunes and regain a foothold in the smartphone market.


  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols

Shaun Nichols is the US correspondent for He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus

Work location poll - office, remote or home?

Where do you spend most time working on your primary work device?

Popular Threads

Powered by Disqus
LG G Flex 2 hands-on review

CES 2015: LG G Flex 2 video

A closer look at LG's latest curved-screen smartphone

Updating your subscription status Loading

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button

Beacon technology: what are the opportunities and how does the technology work?

This paper seeks to provide education and technical insight to beacons, in addition to providing insight to Apple's iBeacon specification


Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

C++ Developer - Market Making exchange connectivity

C++ Developer - Market Making exchange connectivity...

C++ Developers - High throughput systems

C++ Developers - High throughput systems My client...

C++ Developer - High Frequency Trading

C++ Developer - High Frequency Trading A proven and...

Application Support - Wakefield - SQL / T-SQL / TCP/IP

Application Support - Wakefield - £22k + Company Car...
To send to more than one email address, simply separate each address with a comma.