Corrupt TIFF file may cause heap overflow resulting in Denial of Service in the BlackBerry Attachment Service

Article ID: KB04757

Type:   Security Advisory

First Published: 01-20-06

Last Modified: 09-02-2010

 

Product(s) Affected:

  • BlackBerry Enterprise Server for Novell GroupWise
  • BlackBerry Enterprise Server for Microsoft Exchange
  • BlackBerry Enterprise Server for IBM Domino
Collapse Products
ExpandAffected Software
  • BlackBerry® Enterprise Server 4.0 and later
  • IBM® Lotus® Domino®
  • Microsoft® Exchange
  • Novell® GroupWise®
CollapseIssue Severity

Not assigned.

CollapseOverview

A corrupt Tagged Image File Format (TIFF) file sent to BlackBerry device users may prevent them from viewing attachments.

ExpandRecommendation

Complete the resolution actions documented in this advisory.
ExpandReferences
This article is in reference to US-Computer Emergency Readiness Team (US-CERT) Advisory VU#570768.
CollapseProblem
A corrupt TIFF file sent to a BlackBerry device user prevents the BlackBerry device user from viewing attachments.
 
The BlackBerry Attachment Service automatically restarts either immediately or within a specified time period (the default is 25 minutes). The administrator can manually restart the BlackBerry Attachment Service at any time.
ExpandImpact
BlackBerry device users may not be able to view attachments. There is no impact on any other services (for example, sending and receiving messages, making phone calls, browsing the Internet, and running BlackBerry device applications to access a corporate network).
CollapseResolution
To resolve this problem, complete the steps below that correspond to your environment.
 
Microsoft Exchange
 
For BlackBerry Enterprise Server software version 4.0, install Service Pack 3, then install software version 4.0 Service Pack 3 Hotfix 3.
 
IBM Lotus Domino
 
For BlackBerry Enterprise Server software version 4.0, install Service Pack 3, then install software version 4.0 Service Pack 3 Hotfix 4.
 
Novell GroupWise
 
Install BlackBerry Enterprise Server software version 4.0 Service Pack 3, then install software version 4.0 Service Pack 3 Hotfix 1.
 
Note: To obtain the BlackBerry Enterprise Server software, go to the BlackBerry Software Download Information web site.
CollapseWorkaround
An administrator can exclude TIFF images from being processed by the BlackBerry Attachment Service in the BlackBerry Enterprise Server, or disable the Attachment Service completely.
 
To exclude TIFF images from being processed by the BlackBerry Attachment Service, complete the following steps:
  1. On the BlackBerry Enterprise Server, clickStart>Programs> BlackBerry Enterprise Server>BlackBerry Enterprise Server Configuration.
  2. Click the Attachment Server tab.
  3. In the Format Extensions field, delete the.tiff and .tif extensions.
     
    Note: The Format Extensions field is an editable field that lists all the extensions that the BlackBerry Attachment Service will open. A colon is used as a delimiter.
     
  4. Click Apply, then clickOK.
  5. In Microsoft Windows® Administrative Tools, double-clickServices.
  6. Right-click BlackBerry Attachment Service, then click Stop.
  7. Right-click BlackBerry Attachment Service, then click Start.
  8. Close the Services window.
For Microsoft Exchange and Novell GroupWise, follow these additional steps:
  1. In Administrative Tools, double-clickServices.
  2. Right-click BlackBerry Dispatcher, then clickStop.
  3. Right-click BlackBerry Dispatcher, then clickStart.
  4. Close the Services window.
     
    Important: Restarting certain BlackBerry Enterprise Server services will delay message delivery to BlackBerry devices. For more information, see KB-04789.
For IBM Lotus Domino, follow these additional steps:
  1. Open the Lotus Domino Administrator, then click theServer tab.
  2. Click the Status tab, then clickServer Console.
  3. In the Domino Command field, type tell BES quit and pressENTER.
  4. In the Domino Command field, type load BES and pressENTER.
  5. Close the Lotus Domino Administrator.

Even though the .tiff and .tif extensions have been removed from the list of supported file types, the BlackBerry Attachment Service may automatically detect a TIFF file with a renamed extension and attempt to process the file. Administrators may need to disable the image attachment distiller.

To disable the image attachment distiller, complete the following steps:

  1. On the BlackBerry Enterprise Server, clickStart>Programs> BlackBerry Enterprise Server>BlackBerry Enterprise Server Configuration.
  2. On the Attachment Server tab, select Attachment Server from the Configuration Option drop-down list.
  3. In the Distiller Settings section, clear theEnabled check box for Image Attachments.
  4. Click Apply, then clickOK.
  5. In Administrative Tools, double-clickServices.
  6. Right-click BlackBerry Attachment Service, then click Stop.
  7. Right-click BlackBerry Attachment Service, then click Start.
  8. Close the Services window.
For Microsoft Exchange and Novell GroupWise, follow these additional steps:
  1. In Administrative Tools, double-clickServices.
  2. Right-click BlackBerry Dispatcher, then clickStop.
  3. Right-click BlackBerry Dispatcher, then clickStart.
  4. Close the Services window.
For IBM Lotus Domino, follow these additional steps:
  1. Open the Lotus Domino Administrator, then click theServer tab.
  2. Click the Status tab, then clickServer Console.
  3. In the Domino Command field, type tell BES quit and pressENTER.
  4. In the Domino Command field, type load BES and pressENTER.
  5. Close the Lotus Domino Administrator.
CollapseAdditional Information

Visit www.blackberry.com/security for more information on BlackBerry security.

CollapseAcknowledgements
A presentation by FX of Phenoelit has identified an issue in the BlackBerry Enterprise Server that is known to Research In Motion (RIM) and has been corrected in current releases of the BlackBerry Enterprise Server.
CollapseChange Log

09-02-10

Updates to article formatting. No technical content changed.

Disclaimer

By downloading, accessing or otherwise using the Knowledge Base documents you agree:

   (a) that the terms of use for the documents found at www.blackberry.com/legal/knowledgebase apply to your use or reference to these documents; and

   (b) not to copy, distribute, disclose or reproduce, in full or in part any of the documents without the express written consent of RIM.


Visit the BlackBerry Technical Solution Center at www.blackberry.com/btsc.