RIM BlackBerry Pearl 8100 Browser DoS

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: RIM BlackBerry Pearl 8100 Browser DoS
From: clappymonkey@xxxxxxxxx
Date: 12 Mar 2007 11:40:14 -0000
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm

RIM BlackBerry Pearl 8100 Browser DoS
------

12 March 2007

Summary:
A vulnerability has been discovered that could impact upon the availability of 
the BlackBerry 8100 Wireless handheld (v4.2.0.51). It is possible for a remote 
attacker to construct a WML page that contains an overly long string value 
within a link (e.g.: <a href = "aaaaaaaaaaaaaaaaaaa etc.>). Should the page or 
link be accessed by BlackBerry devices, this leads to a temporary Denial of 
Service within the 4thPass browser component on the device, and temporary 
device inoperability. Normal functionality will be returned to the browser / 
device after an amount of time relative to the size of the link supplied, or by 
physically removing and reinserting the battery thereby creating a reset.

Business Impact:
Exploitation of this issue can lead to a loss of device functionality.  

Affected Product(s):
The BlackBerry 8100 (Pearl) handheld device (v4.2.0.51)

Remediation:
Upgrade to vendor patch 4.2.1

Additional details of this vulnerability are available from the vendor at 
www.blackberry.com/security/news.jsp

Credit:
Michael Kemp (www.clappymonkey.com)

Prev by Date: GuppY v4.0 remote del files/index
Next by Date: Re: PHP-Nuke <= 8.0 Cookie Manipulation (lang)
Previous by thread: GuppY v4.0 remote del files/index
Next by thread: Re: RIM BlackBerry Pearl 8100 Browser DoS
Index(es):
- Date
- Thread