January 25, 2008 by dennis
In a sign of even worse things to come for iPhone owners than the recently released iPhone trojan (analysts did predict it would happen), a new iPhone Safari browser vulnerability was discovered, which will crash your device if executed by a site that you accessed.
This vulnerability seems to target v1.1.2 firmware handsets. Once you access a malicious website, it will (thankfully only) generate a memory hog in your iPhone’s Safari browser, which in its turn will cause your iPhone to freeze.
As of now no known solution is available for this issue — Apple would need to address it itself, and since it is a brand new threat it will take some time, especially since Apple does not release iPhone firmware upgrades all that often.
This is certainly bad news for iPhone owners, as it seems as the more the popularity of the said handset increases, the more hackers, some of whom happen to be malicious, it attracts.
You can read more about this hack at this exploit at Security Focus. And here’s the code based on which this iPhone vulnerability works.
- iPhone denial of service vulnerability discovered by McAfee (finally)
- Remote iPhone Denial of Service vulnerability exploit attacks 16GB iPhones (and 32GB Apple iPod Touch)
- New iPhone Safari remote execution DoS exploit locks up your iPhone by simply visiting a malicious page
Sign up to receive latest iPhone World news and updates via e-mail, RSS, Twitter or Facebook!