You're viewing an article in iPO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site: SecurityFocus Uncovers Mobile Safari Security Flaw
SecurityFocus Uncovers Mobile Safari Security Flaw
Monday, January 28th, 2008 at 10:25 AM - by
Security research firm SecurityFocus claimed it discovered a flaw in the mobile Safari Web browser used in Apple's iPhone. While the flaw could allow a remote attacker to cause a kernel panic on the iPhone, it appears for now that it does not allow for remote code execution.
SecurityFocus commented "Attackers can exploit this issue by enticing an unsuspecting user to view a maliciously crafted webpage. Successful attacks cause a kernel panic, crashing the device. Given the nature of this issue, remote code execution may also be possible, but this has not been confirmed."
The group stated that the flaw was discovered in iPhone Software version 1.1.2, but could be present in other versions of the iPhone software, including version 1.1.3.
Currently there are no known instances of the security flaw being exploited in the wild.
- Editorial - It's Time for the Promised, Unlocked iPhone 3Gs
- Wal-Mart Employees Confirm iPhone Rumors
- The RIAA vs. 19 Year Old Cancer Patient
- Mac Gaming News - Gameloft Brings Hero of Sparta to the iPhone
- Free on iTunes - Return to the Moon, JPL, Stranger Things And More
- Apple Claims 300 Million App Store Downloads, 10,000 Apps Available