Apple Mobile Safari for iOS 4.2.1 Unspecified Remote Code Execution Vulnerability

Apple Mobile Safari for iOS is prone to an unspecified remote code-execution vulnerability.

An attacker can exploit this issue by enticing an unsuspecting user into viewing a specially crafted website. A successful exploit will result in the execution of arbitrary code in the context of the user running the affected application. Failed exploits will likely result in a denial-of-service condition.

Apple iOS 4.3 and earlier are vulnerable.

NOTE: Due to memory protections in place in iOS 4.3, code execution will be difficult.


Privacy Statement
Copyright 2010, SecurityFocus