toggle

AAPL Stock: 98.38 ( 0 )

Printed from http://www.macnn.com

Code crashes Safari in iPhone 1.1.4, fixed for Mac/PC

updated 12:30 am EDT, Wed March 19, 2008

Code crashes iPhone 1.1.4

A new exploit has surfaced for the iPhone's Safari browser that, while drawing parallels to an earlier issue, requires no user input to function. According to iPhone World, the vulnerability is triggered by previously conceived code that has been refined in the above manner. The issue affects firmware version 1.1.4 iPhones, and presumably previous versions. Safari on the Mac and PC were also affected by this vulnerability, but it was recently fixed in Safari 3.1, released today.

The exploit requires a certain JavaScript argument to function and will most likely not be fixed until the next firmware version is released.




by MacNN Staff

toggle

Comments

  1. Peter Bonte

    Joined: Dec 1969

    0

    Security

    If JavaScript is a security issue on the iPhone i don't want Java or any other 3P scripting software on it, Apple could never secure the device.

  1. danviento

    Joined: Dec 1969

    0

    If only

    If only there was a way to fence in these plugins to limit access to a particular portion of the device's resources. Of course that leaves the browser vulnerable to crashing. No, I guess Apple will have to stick to their SDK agreement guns to keep this smartphone, well, 'smart.'

  1. testudo

    Joined: Dec 1969

    0

    security

    It's not so much of a security issue as a poor programming issue. There should be no way any OS should lock up when dealing with a Javascript. This is probably why it has taken apple so long to produce an SDK, and why it's still several months, if not more, before apps will be runnable.

    Sounds like the took the MS way of programming. "Let's get it working and out there, then we can come back and make it stable and secure!"

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Adesso Xtream S3B Bluetooth speaker

Finding a speaker purpose-built for a specific need is challenging. Even when a Bluetooth speaker can be paired with a mobile device, ...

JBL Synchros E40BT headphones

For all the different configurations of headphones on the market, it's always a tough choice for buyers to get something that is just ...

Razer Taipan mouse

The list of gaming devices is growing larger with each passing day. A large number of companies have entered the gaming input arena, a ...

toggle

Most Commented