Exclusive Deal While supplies last, save 40% off over 40 iPhone 5 and iPhone 4/4S cases and chargers as well as Samsung S III cases at Kensington.com. Use coupon code 'SAVE40%' at checkout to receive this exclusive discount.      
toggle

AAPL Stock: 445.15 ( + 3.01 )

http://www.macnn.com/articles/08/03/19/code.crashes.iphone.114/

Code crashes Safari in iPhone 1.1.4, fixed for Mac/PC

updated 12:30 am EDT, Wed March 19, 2008

 

Code crashes iPhone 1.1.4


A new exploit has surfaced for the iPhone's Safari browser that, while drawing parallels to an earlier issue, requires no user input to function. According to iPhone World, the vulnerability is triggered by previously conceived code that has been refined in the above manner. The issue affects firmware version 1.1.4 iPhones, and presumably previous versions. Safari on the Mac and PC were also affected by this vulnerability, but it was recently fixed in Safari 3.1, released today.

The exploit requires a certain JavaScript argument to function and will most likely not be fixed until the next firmware version is released.


by MacNN Staff

Post tools:

TAGS :

 iPhone, security, hacks, firmware, vulnerability, exploit, Safari, code, Apple

Related Articles

Recent Articles

toggle

Comments

  1. Peter Bonte

    Fresh-Faced Recruit

    Joined: Aug 2001

    0
    03/19, 04:58am | report spam | Reply |

    Security

    If JavaScript is a security issue on the iPhone i don't want Java or any other 3P scripting software on it, Apple could never secure the device.

  1. danviento

    Fresh-Faced Recruit

    Joined: Dec 2005

    0
    03/19, 09:35am | report spam | Reply |

    If only

    If only there was a way to fence in these plugins to limit access to a particular portion of the device's resources. Of course that leaves the browser vulnerable to crashing. No, I guess Apple will have to stick to their SDK agreement guns to keep this smartphone, well, 'smart.'

  1. testudo

    Forum Regular

    Joined: Aug 2001

    0
    03/19, 09:40am | report spam | Reply |

    security

    It's not so much of a security issue as a poor programming issue. There should be no way any OS should lock up when dealing with a Javascript. This is probably why it has taken apple so long to produce an SDK, and why it's still several months, if not more, before apps will be runnable.

    Sounds like the took the MS way of programming. "Let's get it working and out there, then we can come back and make it stable and secure!"

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

MaxUpgrades MaxConnect for 2006-2008 Mac Pro

Nobody outside of Cupertino's privileged bunch knows the future of the Mac Pro line for sure. Despite Apple's reluctance to tell us wh ...

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

toggle

Most Commented

 

Popular News