macnn

01/26/2008, 1:25pm, EST

Saturday, January 26th

DoS attack on iPhone causes memory leak, freeze

iPhone owners should be on guard against a new threat, which fortunately doesn't harm the device, but still induces a freeze by taking all available system memory. According to security firm SecurityFocus, the vulnerability is exposed by a Denial of Service attack, when a maliciously crafted webpage is viewed. The page will insert code into the iPhone, which continually eats up available system memory before causing a kernel panic.

While not the first attack on the iPhone, SecurityFocus believes it could be harmful to the device's wellbeing by potentially executing remote code.

The DoS exploit has been verified to work on the 1.1.2 iPhone firmware; Apple has not commented on the issue


Filed under: iPhone, security, hacks
Other story tags: vulnerability, Panic, Denial of Service

, , 2comments, del.icio.us, slashdot, digg, buzz


2 comments
Reader Reactions (Please use <i></i> for italic text)

subscribe to comments
for this article




Expand All   Global Settings
imagine engine
iPhone security
0
01/26, 5:42pm, EST
Does this affect users running iPhone firmware 1.1.3?
Fresh-Faced Recruit
Joined Aug 2007
User is offline
ViktorCode
old bug?
0
01/27, 6:02am, EST
Visiting linked page gave me idea of some old Safari flow rediscovered on iPhone. If you look on the list of vulnerable systems beside iPhone 1.1.2 you will find Mac OS X 10.4.2 and earlier version of Tiger. Firmware 1.1.3 is not listed.
Fresh-Faced Recruit
Joined Jan 2006
User is offline
Your Comments

In order to post comments: If you are a registered member, please login with your MacNN Forums username and password otherwise please uncheck the checkbox below.


Registered Member?
macnn forums login:

macnn forums password:

Not a member of the MacNN forums? Register now for free.

MacNN iPodNN Electronista
top searches
1. apple
2. iphone
3. apple TV
4. ipod
5. mac
6. BBC
7. icons
8. icon
9. macbook
10. leopard
search for more ..
RSS Feeds

Have the latest content delivered to your desktop via RSS. Use the links below to get access to a specific blog, news, or reviews feed.



  MacNN -all

  MacNN Reviews

  MacNN Podcasts

  iPodNN

  Electronista

  Left Lane News

Check Out the VIERA from Panasonic!: Enter a New Visual Era with Panasonic VIERA HDTVs. An Enhanced Experience.

IT Education and Training at University of Phoenix®: View our complete list of Information Technology Courses and Programs. Official Site.

Get an IT Degree Online: Get solid credentials. Take your hobby to the next level. Adult Programs. Affordable.

Medifast - Official Site: Lose up to 20 lbs in only 30 Days! Easy, Fast, Medifast. Order Direct.

Open a Checking Account: Endorsed by Dave Ramsey & Earn High Interest + Free ATMS.

Buy from The Apple Store, iTunes.com, Amazon.com, TechDepot, OfficeDepot, Computers4Sure, or donate.