You are here

T-579: BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code

March 15, 2011 - 5:05pm

Addthis

PROBLEM:

A vulnerability was reported in BlackBerry Device Software. A remote user can cause arbitrary code to be executed on the target user's system.

PLATFORM:

BlackBerry Device Software version 6.0 and later.

ABSTRACT:

BlackBerry Device Software Bug in WebKit Lets Remote Users Execute Code.

reference LINKS:

BlackBerry Advisory: KB26132
CVE-2011-1290
BlackBerry Security Note
BlackBerry Device Storage

IMPACT ASSESSMENT:

Moderate

Discussion:

A vulnerability exists in the open source WebKit browser engine provided in BlackBerry Device Software version 6.0 and later. The issue could result in remote code execution on affected BlackBerry smartphones. Successful exploitation of the vulnerability requires the user to browse to a website that the attacker has maliciously designed. A successful exploit could allow the attacker to use the BlackBerry Browser to access user data stored on the media card and in the built-in media storage on the BlackBerry smartphone, but not to access email and other personal information on the file system of the BlackBerry smartphone.

Impact:

BlackBerry is aware of recent reports of a vulnerability affecting the implementation of open source WebKit technology in the BlackBerry Browser in BlackBerry Device Software version 6.0 and later. This security notice communicates the following key facts:

1) The exploitation of the vulnerability was performed at the Pwn2Own 2011 Contest and is publicly known.
2) At the time of release of this security notice, the BlackBerry Security Incident Response Team has not received any reports that this vulnerability has been successfully exploited on a BlackBerry smartphone outside of a test environment or has resulted in any impact to BlackBerry customers.
3) A successful exploit could allow the attacker to use the BlackBerry Browser to access user data stored on the media card and in the built-in media storage on the BlackBerry smartphone, but not to access email and other personal information on the file system of the BlackBerry smartphone.
4) A remote user can create specially crafted HTML that, when loaded by the target user, will execute arbitrary code on the target system.
5) The code can access user data stored on the media card and in the built-in media storage on the BlackBerry smartphone, but not email and other personal information stored on the file system of the BlackBerry smartphone.

The following devices are affected:

* BlackBerry Bold 9650 smartphone
* BlackBerry Bold 9700 smartphone
* BlackBerry Bold 9780 smartphone
* BlackBerry Curve 9300 Series
* BlackBerry Pearl 9100 Series
* BlackBerry Style 9670 smartphone
* BlackBerry Torch 9800 smartphone

The issue affects the open source WebKit browser engine used in BlackBerry Device Software version 6.0 and later.

Non-Affected BlackBerry Products

* BlackBerry Device Software versions earlier than 6.0
* BlackBerry Enterprise Server
* BlackBerry Internet Service
* BlackBerry Desktop Manager
* BlackBerry Mobile Voice System

Solution:

Exercise caution when clicking on links to untrusted websites in browsers, email or instant messages. BlackBerry has described a workaround (disabling the use of JavaScript in the BlackBerry Browser) in their advisory.
BlackBerry Device storage space

 

Deleting data from BlackBerry Devices
 

Addthis