Secunia Advisory SA40807
Release Date 2010-08-03
Criticality level:Highly critical
Impact
rivilege escalation
System access
Where :From remote
Solution Status Unpatched
Operating System :Apple iPhone OS (iOS) 4.x
Description
Two vulnerabilities have been reported in Apple iOS, which can be exploited by malicious people to compromise a user's system.
1) An error in the processing of PDF files can be exploited to execute arbitrary code e.g. when a user visits a specially crafted web page.
2) An unspecified error in the kernel can be exploited to gain escalated privileges.
The vulnerabilities are reported in 4.0.1. Other versions may also be affected.
NOTE: The vulnerabilities are currently exploited to jailbreak a vulnerable device.
Solution
Do not browse untrusted sites or follow links from untrusted sources. Do not open PDF files from untrusted sources.
Bollettino di Sicurezza
Release Date 2010-08-03
Criticality level:Highly critical
Impact
rivilege escalationSystem access
Where :From remote
Solution Status Unpatched
Operating System :Apple iPhone OS (iOS) 4.x
Description
Two vulnerabilities have been reported in Apple iOS, which can be exploited by malicious people to compromise a user's system.
1) An error in the processing of PDF files can be exploited to execute arbitrary code e.g. when a user visits a specially crafted web page.
2) An unspecified error in the kernel can be exploited to gain escalated privileges.
The vulnerabilities are reported in 4.0.1. Other versions may also be affected.
NOTE: The vulnerabilities are currently exploited to jailbreak a vulnerable device.
Solution
Do not browse untrusted sites or follow links from untrusted sources. Do not open PDF files from untrusted sources.
Bollettino di Sicurezza