You're viewing an article in iPO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site: Security Firm: Avoid iPhone Web Dialer

News

Security Firm: Avoid iPhone Web Dialer

Tuesday, July 17th, 2007 at 11:40 AM - by

Apple's iPhone has a great feature that lets you dial any phone number it finds on a Web page. SPI labs, however, thinks that feature poses a security risk, and shouldn't be used until Apple releases an update to address the issue.

In theory, the threat could allow an attacker to trick an iPhone user into dialing a different number than the one they intended, allow someone to track the calls made from an iPhone, prohibit outgoing calls, or even set the phone to dial endlessly.

The company isn't releasing additional details about the possible exploit, but did state that it has been working with Apple to resolve the issue since July 6. It's unknown if there are any Web sites attempting to take advantage of the exploit, so SPI Labs is advising for now that iPhone users not tap a number on a Web page to dial it.


Warning: include(/var/www/bbm/ipodobserver.com/htdocs/comments/includes/constants.php) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 188

Warning: include() [function.include]: Failed opening '/var/www/bbm/ipodobserver.com/htdocs/comments/includes/constants.php' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 188

Warning: include(/var/www/bbm/ipodobserver.com/htdocs/comments/includes/template.php) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 189

Warning: include() [function.include]: Failed opening '/var/www/bbm/ipodobserver.com/htdocs/comments/includes/template.php' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 189

Warning: include(/var/www/bbm/ipodobserver.com/htdocs/comments/includes/sessions.php) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 190

Warning: include() [function.include]: Failed opening '/var/www/bbm/ipodobserver.com/htdocs/comments/includes/sessions.php' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 190

Warning: include(/var/www/bbm/ipodobserver.com/htdocs/comments/includes/auth.php) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 191

Warning: include() [function.include]: Failed opening '/var/www/bbm/ipodobserver.com/htdocs/comments/includes/auth.php' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 191

Warning: include(/var/www/bbm/ipodobserver.com/htdocs/comments/includes/functions.php) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 192

Warning: include() [function.include]: Failed opening '/var/www/bbm/ipodobserver.com/htdocs/comments/includes/functions.php' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 192

Warning: include(/var/www/bbm/ipodobserver.com/htdocs/comments/includes/db.php) [function.include]: failed to open stream: No such file or directory in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 193

Warning: include() [function.include]: Failed opening '/var/www/bbm/ipodobserver.com/htdocs/comments/includes/db.php' for inclusion (include_path='.:/usr/share/php5:/usr/share/php') in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 193

Fatal error: Call to undefined function encode_ip() in /var/www/bbm/ipodobserver.com/htdocs/comments/common.php on line 204