updated 11:25 am EST, Thu February 7, 2008
iPhone DoS surfaces
An exploit for Apple's iPhone has surfaced that can crash the device when unsuspecting users visit a maliciously crafted Web page. SecurityFocus notes that successful attacks cause a kernel panic, crashing the iPhone which could ultimately lead to remote code execution. The firm states that iPhone firmware version 1.1.2 and 1.1.3 are both affected, and suggest that other versions may also be vulnerable.
Apple Mobile Safari 0 is vulnerable to the denial-of-service attack, which results from a failure to handle exceptional conditions. The security hole is currently unpatched, leaving iPhone owners vulnerable to potential attacks until Apple issues a security update.