BlackBerry has announced the release of BES 5.0.4 MR2. This milestone release allows support for Microsoft Exchange Server 2013 (E15) and Windows Server 2012. Support for Microsoft Lync 2013 has also been added, and Office Communication Server 2007 R2, and Lync 2010 are also said to be supported in this update.
This update also addresses two major security vulnerabilities in which attackers could gain access to the Blackberry Enterprise Server to execute malicious code. The flaws affect the MDS Connection Service and the BlackBerry Messaging Agent when they are processing TIFF images for rendering on devices. An orchestrated attack takes advantage of bugs CVE-2012-2088 and CVE-2012-4447 that exist in the libtiff library. However, both have been patched in this release.
Administrators can download the update immediately at the following address:
For more information regarding this update please read the release notes.