Research In Motion Releases Advisory for BlackBerry PDF Distiller Vulnerabilities
Original release date: December 1, 2009 at 1:58 pm
Last revised: December 1, 2009 at 1:58 pm
Research In Motion has released a security advisory to address
multiple vulnerabilities in the PDF distiller of some released
versions of the BlackBerry Attachment Service. The advisory lists the
affected versions as BlackBerry Enterprise Server 5.0.0 running on
Microsoft Windows version 2003 or 2008, BlackBerry Enterprise Server
5.0.0 running on Microsoft Windows 2000, BlackBerry Enterprise Server
software versions 4.1.3 through 4.1.7, and BlackBerry Professional
Software 4.1.4. By convincing a user to view a specially crafted PDF
file, an attacker may be able to execute arbitrary code or cause a
denial-of-service condition on the system that hosts the BlackBerry
Attachment Service.
US-CERT encourages users and administrators to review BlackBerry
security advisory KB19860 and apply any necessary updates.
Support You Can TRUST 