Secusmart moves forward

Germany says yes to Secusmart acquisition

Enterprise

BlackBerry Identity tools for enterprise announced

News & Rumors

New malware exploits USB, but isn't really that scary

Special Coverage

Hands-on with Secusmart voice encryption

News & Rumors

BlackBerry acquires mobile security company Secusmart

News & Rumors

Blackphone fires back: 'BlackBerry betrayed its customers and jettisoned its credibility'

News & Rumors

BlackBerry discusses Blackphone and why its consumer-grade privacy is inadequate for businesses

News & Rumors

UK government set to rush through emergency surveillance legislation

News & Rumors

UK officials follow US counterparts by banning electronics with no charge from boarding flights

Editorial

Using strong passwords and keeping your online self secure

News & Rumors

First smartphone 'kill switch' bill in the US passed by… Minnesota

News & Rumors

BlackBerry kicks off security-focused Be Mobile Conference

News & Rumors

Bitly alerts users of widespread account compromises, claims no accounts have been accessed

Enterprise

BlackBerry earns two Govie Awards for outstanding security

Enterprise

BlackBerry CEO says Good is not good enough when it comes to security

BlackBerry Apps

BlackBerry tightens up on app security with BlackBerry Guardian and Trend Micro

Enterprise

BlackBerry issues statement on Air Force switch: 'There is nothing more secure than a BlackBerry'

Editorial

Despite growing security concerns, President Barack Obama stills trusts his BlackBerry

BlackBerry Apps

Your WhatsApp conversations may not be as safe as you think

Enterprise

BlackBerry 10 Receives NATO Approval for Restricted Communications

< >

Blackberry Browser Client-Side Denial of Service Vulnerability

By Jack Benney on 14 Mar 2007 09:49 pm EDT
0
loading...
0
loading...
0
loading...

Dont Cry For Me My Crackberry!A security advisory was released earlier this evening which alerted to a new Blackberry browser client-side denial of service vulnerability that effects various blackberry devices with the BlackBerry Device Software version 4.2 and prior.

This DoS is the result of the way the Blackberry browser handles certain excessively long URLs that can cause the device to slow down and possibly come to a screeching halt.  This can only happen if you click on a link that has been crafted to exploit this vulnerability.  If you have been effected a simple reset of the device (remove battery and reinsert) should get you back up and crackberrying once again!

Although the risk is relatively low you should probably upgrade to 4.2 Service Pack 1 if it is available from your carrier for your device. 

Check out Blackberry Downloads for the latest software downloads that are available for your crackberry.  If you are using your company's crackberry you may want to give a heads up to your crackberry administrator.  While you are at it, be sure to mention crackberry.com!

This security vulnerability was first posted at FrSIRT

If you are still waiting for an update from your carrier, you should at least be careful when following links that are within an e-mail message or on a website you do not trust.

Jack Benney Jack Benney "CrackBerry Contributor" 11 (articles) 80 (forum posts)

Reader comments

Blackberry Browser Client-Side Denial of Service Vulnerability

0 Comments