Friday, April 18, 2008

Another iPhone DoS exploit discovered, maybe?


Radware, a provider of integrated application delivery solutions for business-smart networking, announced that they have discovered denial of service vulnerability in the Safari Browser for the iPhones with 1.1.4 firmware.

It works by user accessing an HTML page with the embedded JavaScript code, which produces the (un)desired effect. It can crash the browser of the iPhone itself, until you restart it.

“While vendors are struggling to push new products and applications, it is evident that security still remains a secondary concern,” says Itzik Kotler, Security Operation Center Manager.

It seems very similar to the DoS vulnerability we have reported earlier. It is unknown how similar they are though.

No comments: