BlackBerry Desktop Software Information Disclosure Vulnerability

Summary
This host is installed with BlackBerry Desktop Software and is prone to Information Disclosure vulnerability.
Impact
Successful exploitation will allow attacker to obtain sensitive information that may lead to further attacks. Impact Level: Application
Solution
Upgrade to the BlackBerry Desktop Software version 6.0.1 or later, For updates refer to http://uk.blackberry.com/services/desktop/desktop_pc.jsp
Insight
The flaw is due to a 'weak password method' used in the BlackBerry Desktop Software, which allows to conduct brute force guessing attacks to decrypt the backup file.
Affected
BlackBerry Desktop Software version 4.7 through 6.0
References