BlackBerry squashes W-TIFF-F bug that's ripe for malware squirters

BlackBerry has patched a security vulnerability that allowed hackers to run malicious code on systems running its BlackBerry Enterprise Server (BES) software.

The bug, rated as "high severity", is triggered by specially crafted TIFF image files that travel into BES as users visit webpages, receive emails and exchange instant message conversations.

BlackBerry has supplied an update, which it warns must be applied not only to prevent hackers from squirting malicious code onto messaging servers, but also to block potential attempts by miscreants to harness the vulnerability as a means to hack into corporate networks.