March 18, 2008 10:14 AM PDT

Web code locks up iPhones and iPod Touch

Posted by Robert Vamosi

Share
- Digg
- Del.icio.us
- Reddit
- Facebook
Email
Print

A new exploit will either lock up your iPhone or iPod Touch or crash your Safari browser on your PC or Mac OS desktop if you simply visit a maliciously coded Web site. Unlike an earlier exploit that required users to click to become infected, the new code published by iPhoneWorld requires no user interaction.

So far, Apple has had no comment.

The code was first reported in January and exhausts the memory in Safari, which in turn will cause your iPhone or iPod Touch to freeze, or your desktop Safari to crash. "Given the nature of this issue," said the BugTraq newsgroup vulnerability report, "remote code execution may also be possible, but this has not been confirmed."

There is no patch available from Apple. The recommended workaround is to disable Javascript within Safari. To do so:

Originally posted at Defense in Depth

Topics:: Music,; Security,; Phones

Tags:: security,; Apple,; Iphone,; Ipod Touch,; Safari,; memory exhaustion,; DoS,; crash,; iPhoneWorld

Bookmark:: Digg; Del.icio.us; Reddit

About Crave

The name says it all. Crave is our blog about gorgeous gadgets and other crushworthy stuff. If you would like to contact Crave with a tip or comment, please write to: crave@cnet.com

Add this feed to your online news reader

Crave topics

Inside CNET News

Scroll Left Scroll Right

Underexposed
Adobe gets an e-earful, and listens
Dear Adobe, a site where people can carp about problems with products and pass judgment on others' gripes, has caught the company's attention.
Gallery
Photos: Top 10 reviews of the week
News - Apple
Tethering coming soon to iPhone 3G?
If the latest e-mail claiming to be the work of Apple's CEO is accurate, iPhone 3G owners might soon be able to get their laptops online using their phone.
Outside the Lines
EIC Squared: Psystar vs. Apple, Cisco vs. Microsoft, Dell's cloud
On this episode of the EIC Squared podcast, CNET News' Dan Farber and ZDNet's Larry Dignan discuss the week's news.
Video
USB device spies on mobile phones
News - Wireless
Europe reduces cap on voice-roaming prices
Price reductions are due to EU regulation that aims to "curb the excessive roaming charges consumers had to pay for roaming calls."
Video
Up close with one-to-one computing
News - Politics and Law
How to get thrown into a Chinese prison
James Powderly planned to use a green laser to project a pro-Tibet message on the Bird's Nest Stadium during the Olympics. Before he could make the attempt, Chinese authorities locked him up for nearly a week.
News - Cutting Edge
Art design for the masses, chosen by the masses
Industry execs say crowdsourcing is one of the best ways to stay on top of consumer trends, so a host of new sites are asking professional and armchair designers to submit art for sneakers, skateboards, car art, and stationery.
Gallery
Photos: Your ticket to the Democratic convention
Crave
This week in Crave-land
A look back at some of the truly interesting, strange, and wonderfully silly stories we Craved.
News - Politics and Law
Democrats find 'green' political convention tough to enforce
The idea of the "greenest" convention in the party's history was an attractive one. But tens of thousands of humans generate a lot of trash. And not everyone wanted to give up their Yukon XL SUVs.