BESAdmin.info - Your Technical Support Source

Home Archive Technical Discussions eStore New!
Helpful Links

We Suggest reading:

Yahoo Buzz Technorati Stumbleupon Reddit Myspace Digg Delicious

Corrupt TIFF file may cause heap overflow resulting in Denial of Service in the BlackBerry Attachment Service

Doc ID: KB04757
Modified Date: 12-09-2008
Document Type: Security_Advisory

Print this page

Products

  • BlackBerry® Enterprise Server
  • BlackBerry® Enterprise Server for IBM® Lotus® Domino®
  • BlackBerry® Enterprise Server for Microsoft® Exchange
  • BlackBerry® Enterprise Server for Novell® GroupWise®


Environment

  • BlackBerry® Enterprise Server 4.0 and later
  • IBM® Lotus® Domino®
  • Microsoft® Exchange
  • Novell® GroupWise®
  • SDR76709
  • US-CERT Advisory VU#570768
 
Background
A presentation by FX of Phenoelit has identified an issue in the BlackBerry Enterprise Server that is known to Research In Motion® and has been corrected in current releases of the BlackBerry Enterprise Server. This article is in reference to US-Computer Emergency Readiness Team (US-CERT) Advisory VU#570768.
Advisory posted: 20 January 2006

Note: The technical content of this article was last modified on 07/20/06. The Last Modified date that appears in the top right of the article indicates an update due to a system upgrade that did not affect article content.


Overview

A corrupt Tagged Image File Format (TIFF) file sent to BlackBerry device users may prevent them from viewing attachments.



Impact

BlackBerry device users may not be able to view attachments. There is no impact on any other services (for example, sending and receiving messages, making phone calls, browsing the Internet, and running BlackBerry device applications to access a corporate network).

Problem

A corrupt TIFF file sent to a BlackBerry device user prevents the BlackBerry device user from viewing attachments.
 
The BlackBerry Attachment Service automatically restarts either immediately or within a specified time period (the default is 25 minutes). The administrator can manually restart the BlackBerry Attachment Service at any time.


Resolution

To resolve this problem, complete the steps below that correspond to your environment.
 
Microsoft Exchange
 
For BlackBerry Enterprise Server software version 4.0, install Service Pack 3, then install software version 4.0 Service Pack 3 Hotfix 3.
 
IBM Lotus Domino
 
For BlackBerry Enterprise Server software version 4.0, install Service Pack 3, then install software version 4.0 Service Pack 3 Hotfix 4.
 
Novell GroupWise
 
Install BlackBerry Enterprise Server software version 4.0 Service Pack 3, then install software version 4.0 Service Pack 3 Hotfix 1.
 
Note: To obtain the BlackBerry Enterprise Server software, go to the BlackBerry Software Download Information web site.


Workaround

An administrator can exclude TIFF images from being processed by the BlackBerry Attachment Service in the BlackBerry Enterprise Server, or disable the Attachment Service completely.
 
To exclude TIFF images from being processed by the BlackBerry Attachment Service, complete the following steps:
  1. On the BlackBerry Enterprise Server, clickStart>Programs> BlackBerry Enterprise Server>BlackBerry Enterprise Server Configuration.
  2. Click the Attachment Server tab.
  3. In the Format Extensions field, delete the.tiff and .tif extensions.
     
    Note: The Format Extensions field is an editable field that lists all the extensions that the BlackBerry Attachment Service will open. A colon is used as a delimiter.
     
  4. Click Apply, then clickOK.
  5. In Microsoft Windows® Administrative Tools, double-clickServices.
  6. Right-click BlackBerry Attachment Service, then click Stop.
  7. Right-click BlackBerry Attachment Service, then click Start.
  8. Close the Services window.
For Microsoft Exchange and Novell GroupWise, follow these additional steps:
  1. In Administrative Tools, double-clickServices.
  2. Right-click BlackBerry Dispatcher, then clickStop.
  3. Right-click BlackBerry Dispatcher, then clickStart.
  4. Close the Services window.
     
    Important: Restarting certain BlackBerry Enterprise Server services will delay message delivery to BlackBerry devices. For more information, see KB-04789.
For IBM Lotus Domino, follow these additional steps:
  1. Open the Lotus Domino Administrator, then click theServer tab.
  2. Click the Status tab, then clickServer Console.
  3. In the Domino Command field, type tell BES quit and pressENTER.
  4. In the Domino Command field, type load BES and pressENTER.
  5. Close the Lotus Domino Administrator.
Even though the .tiff and .tif extensions have been removed from the list of supported file types, the BlackBerry Attachment Service may automatically detect a TIFF file with a renamed extension and attempt to process the file. Administrators may need to disable the image attachment distiller.

To disable the image attachment distiller, complete the following steps:

  1. On the BlackBerry Enterprise Server, clickStart>Programs> BlackBerry Enterprise Server>BlackBerry Enterprise Server Configuration.
  2. On the Attachment Server tab, select Attachment Server from the Configuration Option drop-down list.
  3. In the Distiller Settings section, clear theEnabled check box for Image Attachments.
  4. Click Apply, then clickOK.
  5. In Administrative Tools, double-clickServices.
  6. Right-click BlackBerry Attachment Service, then click Stop.
  7. Right-click BlackBerry Attachment Service, then click Start.
  8. Close the Services window.
For Microsoft Exchange and Novell GroupWise, follow these additional steps:
  1. In Administrative Tools, double-clickServices.
  2. Right-click BlackBerry Dispatcher, then clickStop.
  3. Right-click BlackBerry Dispatcher, then clickStart.
  4. Close the Services window.
For IBM Lotus Domino, follow these additional steps:
  1. Open the Lotus Domino Administrator, then click theServer tab.
  2. Click the Status tab, then clickServer Console.
  3. In the Domino Command field, type tell BES quit and pressENTER.
  4. In the Domino Command field, type load BES and pressENTER.
  5. Close the Lotus Domino Administrator.


Additional Information

Visit www.blackberry.com/security for more information on BlackBerry security.



RSS Feed | Contact

BES Admin | Valid CSS and XHTML

BESAdmin.info is in No Way Affiliated with Research in Motion Limited.

The names RIM© and BlackBerry© are registered Trademarks of Research In Motion Limited.