Title

BlackBerry Attachment Service PDF Distiller Remote Buffer Overflow Vulnerability (Cat II impact)

Discussion

Research In Motion has released a security advisory addressing a vulnerability in the PDF distiller of the Blackberry Attachment Service for the BlackBerry Enterprise Server. Blackberry Enterprise Server is a software package that is part of the BlackBerry wireless platform. To exploit this vulnerability, an attacker would entice a user to open a malicious PDF file on a BlackBerry smartphone that is associated with a user account on a BlackBerry Enterprise Server. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code or cause a denial of service condition on the affected system. At this time, there are no known exploits associated with this vulnerability; USCYBERCOM is not aware of any DoD related incidents. BlackBerry Attachment Service PDF Distiller Remote Buffer Overflow Vulnerability - (CVE-2010-2604): This vulnerability could allow a malicious individual to cause buffer overflow errors, which may result in arbitrary code execution on the computer that hosts the BlackBerry Attachment Service. While code execution is possible, an attack is more likely to result in the PDF rendering process terminating before it completes. In the event of such an unexpected process termination, the PDF rendering process will restart automatically but will not resume processing the same PDF file. Successful exploitation of this vulnerability requires a malicious individual to persuade a BlackBerry smartphone user to open a specially crafted PDF file on a BlackBerry smartphone that is associated with a user account on a BlackBerry Enterprise Server. The PDF file may be attached to an email message or the BlackBerry smartphone user may retrieve it from a web site using the BlackBerry Browser.

Check Content

See the IAVM notice and vendor bulletin for additional information. Vulnerable Applications/Systems: BlackBerry Enterprise Server Express version 5.0.1 and 5.0.2 for Microsoft Exchange BlackBerry Enterprise Server Express version 5.0.2 for IBM Lotus Domino BlackBerry Enterprise Server versions 4.1.3 through 5.0.2 for Microsoft Exchange and IBM Lotus Domino BlackBerry Enterprise Server versions 4.1.3 through 5.0.1 for Novell GroupWise BlackBerry Professional Software version 4.1.4 for Microsoft Exchange and IBM Lotus Domino Note: While BlackBerry Enterprise Server Express and BlackBerry Professional Software are affected by this vulnerability, they are not authorized for use on DOD networks. View the About “Product” from the menu to view version and build numbers. Alternately, check the version through the Support information link for the program in Add or Remove Programs or in Programs and Features (Vista and later). To expose the version column in Programs and Features right click somewhere in the column headers, select More and select Version.

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-25885

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.