• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Apple iPhone Mobile Safari Browser Remote Heap Overflow Vulnerability

Solution:
Apple security advisory APPLE-SA-2007-07-31 iPhone v1.0.1 Update is available; please see the reference section for details.

It should be noted that this update is only available through iTunes and it will not be available through the Software Update application or through the Apple Downloads site. The update can be automatically detected and downloaded by iTunes. The user will be asked to install the update when iPhone is docked.

Apple has also released Safari 3 Beta Update 3.0.3 to address this issue. Please see references for more information.


Apple Safari 3.0.2 Beta

• Apple Safari3Beta.dmg
  For Mac OS X
  http://www.apple.com/safari/download/

Apple Safari 3.0.2 Beta for Windows

• Apple SafariQuickTimeSetup.exe
  Safari+QuickTime for Windows XP or Vista
  http://www.apple.com/safari/download/


• Apple SafariSetup.exe
  For Windows XP or Vista
  http://www.apple.com/safari/download/