Note: The Black Berry Internet Solution is designed to work with T-Mobile My E-mail to give Black Berry device users secure, direct access to any combination of registered enterprise, proprietary, Post Office Protocol 3 (POP3), or Internet Message Access Protocol 4 (IMAP4) email accounts on their Black Berry devices using a single user login account.Microsoft has issued the following Security Bulletins and software updates for critical security vulnerabilities related to Active X controls.

An Active X control is a small program for Internet Explorer, often referred to as an add-on.

Active X controls are like other programs — they aren’t restricted from doing bad things with your computer.

For more information on disabling and removing Active X controls, search for article 240797 in the Microsoft Support Knowledge Base.

Research In Motion (RIM) would like to acknowledge the Microsoft Corporation for also including the kill bits from this security update in the May 2007 Cumulative Security Update for Internet Explorer.

Document and back up the registry entries prior to implementing any changes.

Alternatively, Internet Explorer can be configured to disable Active X controls in the Internet Zone (or any zone used by an attacker), which serves to prevent exploitation of this and other Active X vulnerabilities.

RIM uses CVSS in vulnerability assessments to present an immutable characterization of security issues.

RIM assigns all security relevant issues a non-zero score.

For example, Internet Explorer’s Flash player is an Active X control.

Unfortunately, Active X controls have been a significant source of security problems.

A vulnerability identified by the CERT Coordination Center (CERT/CC) exists in the Team On Import Object Microsoft Active X® control used by Black Berry Internet Service 2.0 on the Black Berry Internet Service and the T-Mobile My E-mail web sites.