There are remotely and easily exploitable vulnerabilities in the BlackBerry Enterprise Server that could allow an attacker to gain access to the server by sending a malicious image file to a user s BlackBerry device. The vulnerabilities are in several versions of BES for Exchange, Lotus Domino and Novell GroupWise. The company has issued a patch for the BES flaws and says they are at the top of the severity scale in terms of exploitability. The vulnerability in both the BlackBerry MDS Connection Service and the BlackBerry Messaging Agent is related to the way that the components handle PNG and TIFF image files.
Source: https://threatpost.com/severe-remote-flaw-fixed-blackberry-enterprise-server-081211/75534/