RIM Discovers, Patches Security Flaws in BlackBerry OS 6, IM Apps

Canadian smartphone maker Research in Motion has announced that it has discovered new security vulnerabilities in its BlackBerry OS 6 and BlackBerry Enterprise Server platform.

According to PC World, the company has found vulnerabilities that affect BB OS 6 for smartphones and the BlackBerry Enterprise Server for IBM Lotus Notes and Microsoft Exchange.

The company said that it had discovered 3 security flaws in the Webkit web browser that is the default web browser in BlackBerry OS 6 platform. The vulnerabilities are capable of allowing a hacker to access and modify data stored both in the internal storage or external memory card on a BB OS 6 device.

"An attacker exploiting these vulnerabilities could read or write to the built-in media storage section of a BlackBerry smartphone or to the media card but could not access user data that the email, calendar, and contact applications store in the application storage (the internal file system that stores application data and user data) of the BlackBerry smartphone," the company warned.

The flaw affects Bold 9650, Bold 9700, Bold 9780, Curve 9300, Pearl 9100, Style 9670, and Torch 9800 smartphones that run on the BlackBerry OS 6 platform. The company revealed that it has already released software updates to fix the flaws.

RIM also informed about a flaw in BlackBerry Enterprise Server platform running with Microsoft's Office Communications Server (OCS) 2007 R2 and the Microsoft Lync Server 2010 BlackBerry IM Client along with BlackBerry Enterprise Server for Microsoft Exchange and IBM Lotus Notes.