Research in Motion has squashed a nasty bug in its BlackBerry server software that allowed it to be commandeered when handset users received messages containing booby-trapped images. The flaw in various versions of the BlackBerry Enterprise Server carried a Common Vulnerability Scoring System rating of 10, the most severe score …
Yet another reason...
For ensuring that the BES 'rendering' component is isolated on its own server(s) firewalled away from the rest of your BES infrastructure. Because the rendering service is on the BES infrastructure it is a potential backdoor on to a enterprise network.
This is not the first time the 'rendering' service has been a security hole .. PDF rendering has been an issue a number of times.
- Product round-up Coming clean: Ten cordless vacuum cleaners
- Something for the Weekend, Sir? I need a password to BRAKE? What? No! STOP! Aaaargh!
- Episode 13 BOFH: WHERE did this 'fax-enabled' printer UPGRADE come from?
- Vulture at the Wheel Ford's B-Max: Fiesta-based runaround that goes THUNK
- Worstall @ the Weekend BIG FAT Lies: Porky Pies about obesity