Advertisement

BlackBerry says TIFF vulnerability exposes enterprise servers to malware

BlackBerry has always prided itself on its top-notch security features, so it's a little worrying to see the company release a "high severity" advisory today warning of a potential exploit. According to the Waterloo-based operation:

Vulnerabilities exist in how the BlackBerry MDS Connection Service and the BlackBerry Messaging Agent process TIFF images for rendering on the BlackBerry smartphone.

Essentially, hackers could rig a TIFF file with malware and then trick a BlackBerry user into loading it via webpage, email or an embedded message, thus allowing the bad guys into their company's Enterprise Server. BlackBerry hasn't received any reports of attacks just yet, but urges IT administrators to update their BES software all the same. The update is available at the source, as are several temporary workarounds for those that can't update their installations just yet.