Security Holes Found In RIM BlackBerry Service

Posted by Zonk on Tuesday January 3, 2006 @07:21AM from the rim-just-cannot-catch-a-break dept.

An anonymous reader writes "Researchers have found several security holes in Blackberry handheld devices and the servers that power them, according to a story at Washingtonpost.com. The research points out serious flaws in the BlackBerry server, which could be exploited by convincing Blackberry handheld users to click on an image file attachment. From the article: 'Lindner's slides from his presentation -- which he agreed not to release until RIM has fully fixed this problem -- show that the Blackberry server which manages all of the encryption keys needed to unscramble e-mail traffic to and from all Blackberry devices registered on the network stores them on a Microsoft SQL database server in plain, unencrypted text. Lindner found that by convincing a Blackberry user to click on a special image attachment, that handheld device could be made to pass on malicious code to the Blackberry server, which could then be taken over and used to intercept e-mails or as a staging point for other attacks within the network.'"

3 of 89 comments (clear)

Min score:

Reason:

Sort:

This gives a whole new meaning to... by Oldsmobile · 2006-01-03 07:23 · Score: 0, Offtopic

This gives a whole new meaning to getting a RIMming...

--
Some say he is made with ascii, others that he is eyeballed daily by millions. All we know is, he is known as the Sig
Imagine by Oldsmobile · 2006-01-03 07:31 · Score: 0, Offtopic

Imagine an army of handheld zombie spamservers!

--
Some say he is made with ascii, others that he is eyeballed daily by millions. All we know is, he is known as the Sig
Re:RIM by chrish · 2006-01-03 08:24 · Score: 0, Offtopic

Woo, the best man at my wedding works at RIM...

--
- chrish