Signature Detail

HTTP: Apple Safari Regular Expression Heap Buffer Overflow

This signature detects attempts to exploit a known vulnerability in Apple Safari. An attacker can create a malicious Web site containing a dangerous JavaScript, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.

Extended Description

Apple iPhone Mobile Safari Browser is prone to a remote heap-overflow vulnerability that can allow an attacker to gain unauthorized access to a device with administrative privileges. The researchers responsible for discovering this issue have developed exploit code that can steal sensitive information from a vulnerable device and send it to a remote server. Another proof of concept that exploits the same issue can be used to perform physical actions on the phone such as making a sound or setting the phone to vibrate. The researchers have not yet disclosed the complete details of this vulnerability but will do so as part of a presentation for the BlackHat security conference on August 2, 2007. This issue also affects Safari on other platforms including Windows and Mac OS X.

Affected Products

• Apple iPhone 1
• Apple Safari 3.0.2 Beta
• Apple Safari 3.0.2 Beta For Windows

References

• BugTraq: 25002
• CVE: CVE-2007-3944
• URL: http://www.securityevaluators.com/iphone/exploitingiphone.pdf
• URL: http://docs.info.apple.com/article.html?artnum=306174