All the latest UK technology news, reviews and analysis


BlackBerry posts patch for Enterprise Server flaw

20 Feb 2013
Research In Motion logo

BlackBerry has told administrators to patch their BlackBerry Enterprise Server (BES) systems following the discovery of a security vulnerability in the platform.

The company formerly known as Research in Motion said that the flaw, which affects the handling of certain Tiff image files, could leave server systems vulnerable to remote code execution attacks. BlackBerry has given the vulnerability a severity rating of 10.0, it's highest.

According to BlackBerry, the vulnerability exists in the handling of image files in the BlackBerry Messaging Service. When handling image files embedded in instant messages, the component can experience at attack which leaves a server vulnerable to remote code execution operations.

To address the flaw, BlackBerry said that it has issued an update to the BES platform. The company is recommending that all system administrators running the platform update their servers to prevent attack.

The security fix, which was first issued by the company last week, has gained further public attention in recent days, potentially increasing the risk for attacks in the wild. BlackBerry has not received any reports of attacks.

BlackBerry is far from alone in its efforts to patch security vulnerabilities. exactly one week ago, Microsoft posted its monthly security fix, while Oracle has been working to ward off a series of Java vulnerabilities which have triggered calls for users to disable the platform whenever possible.

BlackBerry's release comes as the company is pressing forward with what many pundits believe is among the most important releases in its history. The BlackBerry 10 platform has been cited as a critical point in the company's efforts to reverse its fortunes and regain a foothold in the smartphone market.

 

  • Comment  
  • Tweet  
  • Google plus  
  • Facebook  
  • LinkedIn  
  • Stumble Upon  
Shaun Nichols
About

Shaun Nichols is the US correspondent for V3.co.uk. He has been with the company since 2006, originally joining as a news intern at the site's San Francisco offices.

More on Security
What do you think?
blog comments powered by Disqus
Poll

Tech gifts for Christmas 2014

Is a new tablet on your wish list this festive season, or have they become yesterday’s fad?
12%
23%
12%
6%
47%

Popular Threads

Powered by Disqus
iPhone 6 is available in silver gold and space grey

iPhone 6 video review

The best iOS handset to date

Updating your subscription status Loading
Newsletters

Get the latest news (daily or weekly) direct to your inbox with V3 newsletters.

newsletter sign-up button
hpv3may

Getting started with virtualisation

Virtualisation can help you reduce costs, improve application availability, and simplify IT
management. However, getting started can be challenging

ibmv3may

Converting big data and analytics insights into results

Successful leaders are infusing analytics throughout their organisations to drive smarter decisions, enable faster actions and optimise outcomes

Senior 2nd/3rd Line Support Analyst

Senior 2nd/3rd Line Support Analyst Salary: £21,000...

JavaScript Frontend Developer

As a front end developer you will specialise in creating...

Support Team Leader

Support Team Leader We are currently seeking a Support...

Data Analyst – MySQL and Excel, Visual Basic Environment

Are you a recent Maths, Physics or computer science graduate...
To send to more than one email address, simply separate each address with a comma.