January 13, 2009 7:05 AM PST

RIM issues security patches for BlackBerry

by Dawn Kawamoto

Research In Motion issued on Monday interim patches to address critical security flaws in BlackBerry software.

The flaws affect BlackBerry Enterprise Server software version 4.1 Service Pack 3 through Service Pack 6. The BlackBerry Professional Software 4.1 Service Pack 4 is also affected, RIM notes in its security advisory.

RIM is asking corporate customers to install an interim patch for the BlackBerry Enterprise Server and an interim patch for the BlackBerry Professional Software.

RIM also advises BlackBerry users to open PDF attachments only from "trusted sources." The company notes in its security advisory:

Multiple security vulnerabilities exist in the PDF distiller of some released versions of the BlackBerry Attachment Service. These vulnerabilities could enable a malicious individual to send an email message containing a specially crafted PDF file, which when opened for viewing on a Blackberry smartphone, could cause memory corruption and possibly lead to arbitrary code execution on the computer that hosts the BlackBerry Attachment service.

Such security flaws will do little to bolster President-elect Barack Obama's hopes for keeping his BlackBerry while in the White House.

Dawn Kawamoto covers enterprise security and financial news relating to technology for CNET News. E-mail Dawn.

Topics:: Vulnerabilities & attacks

Tags:: BlackBerry,; Research In Motion,; smartphone security,; security vulnerabilities,; RIM

Share:: Digg; Del.icio.us; Reddit; Facebook

About Security

Online security is threatened by more than hacking and phishing attempts. Check here for the latest updates on software vulnerabilities, data leaks, and rapidly spreading viruses--and learn how to protect your systems.

Add this feed to your online news reader

Security topics

Inside CNET News

Scroll Left Scroll Right

Business Tech
EMC raises bid for Data Domain
In the battle for Data Domain, EMC increases its bid to $33.50 per share in cash and says its offer is "clearly superior" to NetApp's bid.
Gallery
Photos: 'Train warriors, test weapons'
Technically Incorrect
Craigslist, eBay fighting Michael Jackson scalpers
Craigslist and eBay are full of offers of tickets to the pop singer's memorial service--some with an asking price of thousands of dollars for a pair. But are the tickets worth anything?
Beyond Binary
Windows 7 testers have long path to upgrade
Moving from the test to final version of the operating system is not as easy as just forking over the money. In some cases, two installations are required.
Video
Video: iPhone 3G S launch in New York City
Digital Media
Jammie Thomas asks for new trial
Lawyers for the Minnesota woman ordered last month to pay $1.92 million in damages for the illegal sharing of 24 copyrighted songs say judgment is "grossly excessive."
Video
A recipe for high-tech chocolate
The Social
Andreessen: Facebook revenue to top $500 million in '09
The Netscape founder, a member of Facebook's board of directors, says the social network has the potential to be a billion-dollar company already.
Cutting Edge
Large Hadron Collider grid stress-tested
The tests, which were deemed a success, threw huge amounts of data at the grid that will process information from the collider.
Gallery
Photos: Spiral Jetty, Robert Smithson's wondrous earthwork
MP3 Insider
Walkman versus the rest--Ask the Editors
MP3 editor Jasmine France addresses reader questions about various Walkman MP3 players as they compare to other models from SanDisk and Samsung.
Green Tech
Microsoft opens Hohm to energy monitoring
Can a slick Web application give you decent advice on cutting your home energy use? Based on a first look at Microsoft Hohm, CNET News' Martin LaMonica says yes.