News

SecurityFocus Uncovers Mobile Safari Security Flaw

Monday, January 28th, 2008 at 10:25 AM - by

Security research firm SecurityFocus claimed it discovered a flaw in the mobile Safari Web browser used in Apple's iPhone. While the flaw could allow a remote attacker to cause a kernel panic on the iPhone, it appears for now that it does not allow for remote code execution.

SecurityFocus commented "Attackers can exploit this issue by enticing an unsuspecting user to view a maliciously crafted webpage. Successful attacks cause a kernel panic, crashing the device. Given the nature of this issue, remote code execution may also be possible, but this has not been confirmed."

The group stated that the flaw was discovered in iPhone Software version 1.1.2, but could be present in other versions of the iPhone software, including version 1.1.3.

Currently there are no known instances of the security flaw being exploited in the wild.

0 comments from the community.

You can post your own below.

+ show options

Your current settings, click to change: Sort Oldest First, Show Guest Posts, Hide Community Stats

Post Your Comments

  Remember Me

Not a member? Register now. You can post comments without logging in, but they'll show up as a "guest" post.


Please enter the word exactly as you see it in the image above. Registered users aren't prompted for this. Having trouble reading the image get a new one.