Research In Motion (RIM) has warned of a vulnerability in how BlackBerry servers handle malformed PDF files that potentially leaves the door open to hacking attacks.

If corporate users of BlackBerry mobile devices are tricked into opening an email message with a booby-trapped PDF attachment, it might be possible to inject hostile code onto a vulnerable server running the BlackBerry Attachment Service, RIM warns.

The Canadian firm is also advising customers to disable PDF file processing on the BlackBerry server, as a workaround, pending the application of a more complete fix.

The incident is far from unprecedented, but it underlines the threat unpatched PDF and Microsoft Office applications increasingly pose to corporate security, beyond the better-known threats posed by unpatched browser applications. ®

Related stories

• Malicious PDFs can commandeer BlackBerry Servers, RIM warns (2 December 2009)
• BlackBerry subscriber growth dips (19 June 2009)
• RIM announces BlackBerry Tour (16 June 2009)
• Trade in secondhand BlackBerries booming in Nigeria (4 May 2009)
• Obama awaiting super-secure BlackBerry delivery (27 April 2009)
• Comment Canadian cops cry for BlackBerry wiretap (25 March 2009)
• RIM squashes BlackBerry PDF peril (14 January 2009)
• RIM issues patch for serious BlackBerry flaw (22 July 2008)