Research in Motion (RIM) has shipped a fix for a serious security vulnerability that exposes BlackBerry users to phishing attacks. The certificate handling vulnerability, which carries a CVSS severity score of 6.8, affects all versions of the BlackBerry device software. The flaw allows malicious hackers to trick BlackBerry device users into connecting to an attacker-controlled Web site, RIM warned in an advisory. BlackBerry users are urged to download and apply the patch for the BlackBerry Device Software as soon as possible.
Source: https://threatpost.com/blackberry-dinged-phishing-flaw-093009/72206/