Research in Motion has issued apatchto fix a security hole for its Blackberry Enterprise server that
affects Acrobat Distiller.
In a
posting on its website Rim said that a security vulnerability
exists in the PDF distiller of some versions of the Blackberry
Attachment Service.
"This vulnerability could enable a malicious individual to send
an e-mail message containing a specially crafted PDF file which,
when opened for viewing on a Blackberry smartphone, could cause
memory corruption and possibly lead to arbitrary code execution on
the computer that the Blackberry Attachment Service runs on," Rim
said.
For administrators who do not want to apply the patch yet, Rim
has recommended disabling the PDF format by editing the list of
file format extensions that the Blackberry Attachment Service
opens, and then preventing the PDF attachment distiller from
running on the Blackberry Attachment Service.
