Forgot your password?

BlackBerry Browser Partial Denial Of Service and BES PDF Vulnerabilities Issued

leaking-house RIM has just announced two new vulnerabilities on the BlackBerry platform. The first is a partial denial of service in the BlackBerry smartphone browser where a specially crafted web page can make the browser or the whole device unresponsive. This is no big feat since any large website with lots of JavaScript will make any BlackBerry device unresponsive but this specific one was spotted by Laurent Oudot of TEHTRI Security. The second vulnerability is YET ANOTHER PDF distiller vulnerability with a CVSS score of 9.3 in the BES solution that allows for remote code execution if you open a specially crafted attack PDF. RIM really needs to fix this vulnerability once and for all since every two months or so it crops back up.

You can read more about both vulnerabilities at the links below:

7 total comments on this postSubmit your comment!
  1. Luckily haven’t experienced anything like these, hopefully they are patched up soon

  2. Its frightening how many vulnerabilities pop up across the entire portfolio of Adobe products…

  3. how the heck do you even get an PDF on your BB to open?

    • Don’t think there are any free pdf apps.. you can purchase a full license for docs to go which includes pdf to go.. or there is repligo or beamreader, which are other paid apps

  4. I haven’t had any of these issues, but wish they’d fix the font issue and size on the browser.

    I’ve opened a pdf from BES before, but it’s so small you cant read it. Zooming makes it blurry.

  5. So meanss will be executed via 3rd party apps?

2 total pingbacks on this post

BlackBerry© is a registered Trademark of BlackBerry Limited. BerryReview is in no way affiliated with BlackBerry Limited though sometimes their lawyers send us love letters...

Copyright © 2007-‘2016’ BerryReview LLC