toggle

AAPL Stock: 112.01 ( -0.53 )

Printed from http://www.macnn.com

Code crashes Safari in iPhone 1.1.4, fixed for Mac/PC

updated 12:30 am EDT, Wed March 19, 2008

Code crashes iPhone 1.1.4

A new exploit has surfaced for the iPhone's Safari browser that, while drawing parallels to an earlier issue, requires no user input to function. According to iPhone World, the vulnerability is triggered by previously conceived code that has been refined in the above manner. The issue affects firmware version 1.1.4 iPhones, and presumably previous versions. Safari on the Mac and PC were also affected by this vulnerability, but it was recently fixed in Safari 3.1, released today.

The exploit requires a certain JavaScript argument to function and will most likely not be fixed until the next firmware version is released.




by MacNN Staff

toggle

Comments

  1. Peter Bonte

    Joined: Dec 1969

    0

    Security

    If JavaScript is a security issue on the iPhone i don't want Java or any other 3P scripting software on it, Apple could never secure the device.

  1. danviento

    Joined: Dec 1969

    0

    If only

    If only there was a way to fence in these plugins to limit access to a particular portion of the device's resources. Of course that leaves the browser vulnerable to crashing. No, I guess Apple will have to stick to their SDK agreement guns to keep this smartphone, well, 'smart.'

  1. testudo

    Joined: Dec 1969

    0

    security

    It's not so much of a security issue as a poor programming issue. There should be no way any OS should lock up when dealing with a Javascript. This is probably why it has taken apple so long to produce an SDK, and why it's still several months, if not more, before apps will be runnable.

    Sounds like the took the MS way of programming. "Let's get it working and out there, then we can come back and make it stable and secure!"

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Dell AD211 Bluetooth speaker

For all of the high-priced, over-engineered Bluetooth speakers in the electronics market, there is still room for mass-market solution ...

VisionTek 128GB USB Pocket SSD

USB flash drives dealt the death blow to both the floppy and Zip drives. While still faster than either of the old removable media, sp ...

Kodak PixPro SL10 Smart Lens Camera

Smartphone imagery still widely varies. Large Megapixel counts don't make for a good image, and the optics in some devices are lackin ...

toggle

Most Commented