Apple Plugs iOS PDF Security HoleCategory: Mobile
Posted: August 14, 2010 12:28PM
Earlier this week Apple released updates to iOS 3 and iOS 4 which address a major security flaw in the mobile operating system's PDF viewer. The security vulnerability allowed users to Jailbreak their devices using a website, however the same hole could be exploited by malicious websites to compromise the device, steal data, and install malicious third party apps without the users knowledge.
iOS 4.0.2 resolves the issue on the iPhone 3G, iPhone 3GS and iPhone 4 as well as the 2nd and 3rd generation iPod Touch devices. Likewise, iOS 3.2.2 plugs the hole for the iPad which has yet to receive the iOS 4 upgrade. Unfortunately users with a first generation iPhone or iPod Touch remain vulnerable to the exploit and since they are unsupported devices are unlikely to see an official patch from Apple. The good, if not somewhat ironic, news is that users with the 1st generation devices can fix the issue once they are jailbroken.