Subject: BlackBerry Advisory - J2ME/RedBrowser.a
McAfee has published an advisory for a Trojan horse program called J2ME/RedBrowser.a.
BlackBerry is one of the platforms that it affects.
A user must choose to download this program through their BlackBerry browser. The program purposes to allow for WAP browsing via SMS. In fact it tries to send SMS messages to premium numbers.
Note that on the BlackBerry the user will be prompted when the program attempts to send an SMS message and the user must authorize the transaction.
Knowledge Base article KB-04916 http://www.blackberry.com/knowledgec...nodeId=1199859
The McAfee advisory link: http://vil.nai.com/vil/content/v_138726.htm
This is NOT a BlackBerry vulnerability. The user must choose to download this un-trusted application and then must authorize the SMS connections that it attempts to make. The KB article discusses this and addresses some general mitigation strategies for an administrator.