Demon Dialer: Phone-Dialing Bug in iPhone Browser

A German security expert has discovered a nasty bug in the iPhone's Safari browser that turns it into a malicious phone dialer.

Collin Mulliner of Fraunhofer Institute for Secure Information Technology (SIT) discovered that the iPhone can issue a phone call without any user interaction whatsoever.  The bug exploits how Safari handles links with a tel: prefix.  As you can see in the video, once initiated, the victim cannot cancel the call.  According to Mulliner, simply disabling Javascript in Safari will not disable the bug.

The problem has existed since at least September 2007, and supposedly the 2.2 firmware update was supposed to correct this.  Clearly, it has not.

We are not sure if issue is fixed in iPhone 3.0 firmware

Apple is reportedly aware of the situation.

[Via Mulliner's web site and The H]

About Dactyl Anapest

Google + Profile