Malicious attacks that can disrupt the flow of information between an Enterprise Server and a BlackBerry Router, or can stop users from being able to open email attachments on BlackBerry are now possible, thanks to recently announced vulnerabilities
in BlackBerry Enterprise Server. RIM (Research in Motion) confirmed the problems yesterday.
In the first vulnerability, an attacker can use a Tiff image file to cause a heap overflow error that can stop a user's ability to view attachments. In the second, a vulnerability is exploited by sending malformed protocol packets that cause a denial of service for all BlackBerry Enterprise Server communication.
RIM said in a statement: "RIM has already developed software fixes for the issues identified by FX. Although there have been no reports of any actual problems by customers, RIM has also provided precautionary measures that can be taken in the meantime until customers implement the software updates."