Welcome to Port3101.org : Your BES Connection Mark forums read | View Forum Leaders
Port3101.org : Your BES Connection



Reply
LinkBack Thread Tools Display Modes
KB16248 - Vulnerability exists in BlackBerry Application Web Loader ActiveX control
 
  #1 (permalink)  
Old 02-11-2009, 01:04 PM
hdawg's Avatar
Proprietor
 
Join Date: Nov 2008
Posts: 2,257
Blog Entries: 147
Default KB16248 - Vulnerability exists in BlackBerry Application Web Loader ActiveX control

KB16248 - Vulnerability exists in BlackBerry Application Web Loader ActiveX control


Environment

  • BlackBerry® Application Web Loader Version 1.0
  • Microsoft® Internet Explorer version (all versions)




Overview

This advisory is intended to assist Research In Motion's (RIM's) customers in addressing an identified vulnerability in the BlackBerry Application Web Loader.
Issue Severity: This vulnerability has a Common Vulnerability Scoring System (CVSS) score of 9.3.
Issue Status: Vulnerability confirmed. Software containing security update released.
Recommendation: Complete the resolution actions documented in this advisory.
References:

Reference
Value

CVE number
CVE-2009-0305
Microsoft advisory
Microsoft Security Advisory







Acknowledgments

eEye Digital Security, working with CERT/CC, identified this vulnerability.
RIM would like to acknowledge Microsoft for including the killbit(s) from this security update in the Advisory. Customers should primarily look to RIM’s security update to resolve this issue. RIM would like to thank Microsoft for their involvement in helping protect our customers.
The update from Microsoft is also available through Microsoft Update, Windows Update, or Office Update, or from the Microsoft Download Center.



Impact

Environment Details

The BlackBerry Application Web Loader is a Microsoft® ActiveX® web-based application loader that third party application developers use to create web pages that enable users to install applications directly on a BlackBerry device. When a user accesses a web page that uses the BlackBerry Application Web Loader and accepts the permission prompt, the web page installs the BlackBerry Application Web Loader on the user’s computer. The BlackBerry Application Web Loader uses the .jad and .cod files stored on the web server to install an application on a BlackBerry device connected to the user’s computer.
The BlackBerry Application Web Loader ActiveX control has the following properties:
ActiveX control property

Value

Name
RIM AxLoader
Publisher
Research In Motion Limited.
File
AxLoader.ocx or AxLoader.dll
Class identifier
4788DE08-3552-49EA-AC8C-233DA52523B9











Problem

An exploitable buffer overflow exists in the BlackBerry Application Web Loader ActiveX control that Internet Explorer uses to install applications on BlackBerry devices.



Cause

When a BlackBerry device user browses to a web site that is designed to install the BlackBerry Application Web Loader ActiveX control on BlackBerry devices over a USB connection, and clicks Yes to install and run the ActiveX control, the ActiveX control introduces the vulnerability to the computer.


Resolution

To resolve the issue, install a version of the BlackBerry Application Web Loader that does not include the vulnerability.
Install the updated version of the BlackBerry Application Web Loader
  1. Visit BlackBerry - Development Tools And Downloads.
  2. Click the link to download the BlackBerry Application Web Loader v1.1.
  3. Complete the installation wizard.



Workaround

Remove the ActiveX control from Internet Explorer and then disable the ActiveX control to prevent Internet Explorer from reinstalling the ActiveX control.
Remove the ActiveX control from Internet Explorer

  1. Open Internet Explorer.
  2. Click Tools > Internet Options.
  3. Under Temporary Internet Files click Settings.
  4. Click View Objects.
  5. Locate RIM AxLoader in the Program Files list:
    • If there is more than one RIM AxLoader file listed, right-click each file and select Properties. Verify which file has ID 4788DE08-3552-49EA-AC8C-233DA52523B9.
  6. Right-click the RIM AxLoader file that has ID 4788DE08-3552-49EA-AC8C-233DA52523B9, and click Remove.
  7. Right-click RIM AxLoader and click Remove.
  8. Click Yes.
  9. Restart Internet Explorer.
Disable the ActiveX control

Use the Registry Editor to set a registry key for the ActiveX control that uses a specific Compatibility Flags DWORD value. This prevents Internet Explorer from calling that ActiveX control, if it exists, unless the Initialize and script ActiveX controls not marked as safe option is enabled in Internet Explorer, or from reinstalling that ActiveX control at the request of another web site.
  1. Use the Registry Editor to browse to the following location:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ActiveX Compatibility\
  2. Verify whether the key {4788DE08-3552-49EA-AC8C-233DA52523B9} exists:
    • If the key exists, continue to step 3.
    • If the key does not exist, click Edit > New > Key. Rename the new key to {4788DE08-3552-49EA-AC8C-233DA52523B9}, the class identifier of the ActiveX control.
  3. If the key {4788DE08-3552-49EA-AC8C-233DA52523B9} does not exist, click Edit > New > Key.
  4. Renamethe key to {4788DE08-3552-49EA-AC8C-233DA52523B9}, the class identifier of the ActiveX control.
  5. Click {4788DE08-3552-49EA-AC8C-233DA52523B9}. Click Edit > New > DWORD value.
  6. Rename the DWORD value to Compatibility Flags.
  7. Click Compatibility Flags. Click Edit > Modify.
  8. Set the Value data field to 00000400.
  9. Restart Internet Explorer.



Additional Information

See the Microsoft Knowledge Base article How to stop an ActiveX control from running in Internet Explorer (Article ID: 240797) for more information about options for disabling, and removing ActiveX controls.

CVSS is a vendor agnostic, industry open standard designed to convey the severity of vulnerabilities. CVSS scores may be used to determine the urgency for update deployment within an organization. CVSS scores range from 0.0 (no vulnerability) to 10.0 (critical). RIM uses CVSS in vulnerability assessments to present an immutable characterization of security issues. RIM assigns all security relevant issues a non-zero score.>>
Visit www.blackberry.com/security for more information on BlackBerry security.

See the BlackBerry Application Web Loader Developer Guide for more information about the BlackBerry Application Web Loader.
__________________
http://blog.port3101.org/hdawg/
Reply With Quote
Sponsored Links
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
Application Control SVF Power Users 3 01-31-2010 10:02 PM
Application Control Policies in 5.0 mahoward Port 3101: The BES Admin Bar & Grill 5 12-10-2009 10:59 AM
KB04670 - Install a third-party application with the Application Loader hdawg Featured BlackBerry KB Articles 0 08-16-2009 09:14 PM
KB16007 - How to block the use of the Application Loader tool through IT Policy hdawg Featured BlackBerry KB Articles 0 04-14-2009 07:46 PM
Application Control Policy: now cant delete any apps!! gpalmer Port 3101: The BES Admin Bar & Grill 7 03-05-2009 08:02 AM


All times are GMT -4. The time now is 11:38 PM.
Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2019, vBulletin Solutions, Inc.


 

SEO by vBSEO 3.3.2 PL2