Critical Security Vulnerability Found in BlackBerry Desktop Software
December 1st, 2008 | by Joey Sanders |
A “critical” security vulnerability has been found in the BlackBerry Desktop Software in a knowledge base article (see KB16469) published by R.I.M. on Nov. 27th, and confirmed by Secunia, a leading vulnerability intelligence provider.
In short, the KB article states “Desktop Manager includes the Roxio® Media Manager for managing media synchronization … includes a Microsoft® ActiveX® control used for retrieving and installing application updates”.
While it is important that users with this vulnerability update and patch their system, we are not calling for a panic! What to do? Make the jump for the details…
According to Daphne, BlackBerryForums.com’s own resident security expert, users should examine the file properties of the ‘agent.exe’ file. Follow the directions below. Please note that is our understanding if you have Desktop Manager installed without Roxio, check the file still, but you should not need to upgrade according to my understanding.
A) Look at your PC, navigate to c: > Program Files > Common Files > Install Shield > Update Service. See the screenshot below:
B) Once you are in the ‘update service’ folder, right click on the ‘agent.exe’ file > click on Properties > then click on the Versions tab > and finally, click on the line ‘File Version’ in the column ‘Item Name’, per this next screenshot:
C) If the your file version is 6.0.100.65100 or earlier, your need to upgrade Desktop Manager. For example, the file above shown is infected (6.0.100.54472), and the Desktop software should be updated.
D) Update your Desktop Software to the latest patch for the BlackBerry Desktop Software version 4.5, 4.6, or 4.7. The KB article notes that the minimum BlackBerry Desktop Software version you can install to resolve this issue is 4.5. Click on this link to visit the Desktop Software Download area.
E) Alternatively, users who do not want to upgrade your BlackBerry Desktop Software, may install a patch from third-party software vendor Acresso™ Software to address the issue.
There is an ongoing discussion in this thread about this issue, to ask questions or to discuss.
Additional links:
http://www.blackberry.com/btsc/articles/749/KB16469_f.SAL_Public.html
http://secunia.com/advisories/32842/
15 Responses to “Critical Security Vulnerability Found in BlackBerry Desktop Software”
By Rob R on Dec 1, 2008 | Reply
Funny thing, I just installed the DM from their website last week, version 4.7 for my 9530, and it had the infected version
By Jeero on Dec 1, 2008 | Reply
Get a Mac and BES. No need for DM unless updating and you can have your admin do it for you.
By bbf on Dec 2, 2008 | Reply
“… For example, the file above shown is infected …”
Perhaps you mean “affected” instead of “infected”? I don’t think that RIM has been distributing malware, only vulnerable components.