BSRT-2013-003 Possible remote code execution on BES 5

Security advisory BSRT-2013-003 has been released by BlackBerry. Vulnerabilities have been found in components that process TIFF images which could allow an attacker to execute code on the BlackBerry Enterprise Server (BES) with the privileges of the service account. Vulnerabilities exist in how the BlackBerry MDS Connection Service and the BlackBerry Messaging Agent process TIFF […]