[Infowarrior] - Blackberry Users Advised to Disable JavaScript
Richard Forno
rforno at infowarrior.org
Thu Mar 17 16:42:12 CDT 2011
Blackberry Users Advised to Disable JavaScript
RIM's Blackberry OS was exploited at Pwn2own, leaving users potentially at risk.
http://www.internetnews.com/mobility/article.php/3928416
March 16, 2011
By Michelle Megna
A team of security researchers successfully exploited the Blackberry mobile platform last week.
Now RIM is responding by providing users of Blackberry OS 6 with some direction on what they should be doing.
"Successful exploitation of the vulnerability requires the user to browse to a website that the attacker has maliciously designed. A successful exploit could allow the attacker to use the BlackBerry Browser to access user data stored on the media card and in the built-in media storage on the BlackBerry smartphone, but not to access user data that the email, calendar and contact applications store in the application storage (the internal file system that stores application data and user data) of the BlackBerry smartphone," according to a RIM security advisory issued in response to the hack demo.
In contrast to simply providing advice, Google, which uses the same underlying WebKit technology in its Chrome browser as Blackberry uses, has already issued an update for the same flaw.
More information about the Infowarrior
mailing list