Backgound:
Reviewing BES IT policy.

Query:
Before configuring the IT policy rules on browser javascript, I would like to know the risk associated with enabling javascript on the blackberry browser assuming that I have already configured following IT policy rules:

Disallow Third Party Application Downloads = TRUE
Allow ThirdParty Use SerialPort = FALSE
Allow Internal Connections = FALSE
Allow External Connections = FALSE
Allow SplitPipe Connections = FALSE

If we allow javascript in browser and the user goes to the website with malicious javascript, will this only result in DOS for the device or it will affect the BES environment or other systems in the corporate network?