Safari in Apple iPhone OS 1.0 up to and including 2.1 and iPhone OS for iPod touch 1.1 up to and including 2.1 does not isolate the call-approval dialog from the process of launching new applications, which allows remote malicious users to make arbitrary phone calls via a crafted HTML document.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apple iphone_os 1.0.2 |
||
apple iphone_os 1.0 |
||
apple safari |
||
apple iphone_os 1.1.1 |
||
apple iphone_os 1.1.2 |
||
apple iphone_os 1.1.3 |
||
apple iphone_os 1.1 |
||
apple iphone_os 1.0.1 |
||
apple iphone_os 2.1 |
||
apple iphone_os 1.1.4 |
||
apple iphone_os 2.0 |
||
apple iphone_os 1.1.5 |
||
apple iphone_os 2.0.2 |
||
apple iphone_os 2.0.1 |