URL spoofing vulnerability found in iOS 5.1 | iLounge News

2014 iPad iPhone iPod Buyers' Guide from iLounge.com

News

URL spoofing vulnerability found in iOS 5.1

Author's pic

By Charles Starrett

Contributing Editor
Published: Thursday, March 22, 2012
News Categories: iPad, iPhone, iPod

A new security vulnerability has been found in Safari on iOS 5.1. Citing security advisories from MajorSecurity as well as the Dutch Ministry of Security and Justice, Your Daily Mac reports that the vulnerability allows for the possibility that the URL of the site a user is looking at does not match what is in the address bar. According to the report, the JavaScript command ‘window.open()’ is at the heart of the issue—while the opening of a new window is apparent on desktop operating systems and Android devices, it is considerably less so in the latest version of mobile Safari. The report suggests that while the vulnerability has been tested with iOS 5.1, it is possible—likely, even—that it exists in Safari on older versions of the operating system. [via The Next Web | Mac Rumors]

« Apple launches third-gen iPad in 24 additional countries

Third-gen iPad Smart Cover woes blamed on polarity »

Related Stories

Comments

If you have a comment, news tip, advertising inquiry, or coverage request, a question about iPods/iPhones/iPad or accessories, or if you sell or market iPod/iPhone/iPad products or services, read iLounge's Comments + Questions policies before posting, and fully identify yourself if you do. We will delete comments containing advertising, astroturfing, trolling, personal attacks, offensive language, or other objectionable content, then ban and/or publicly identify violators.

Commenting is not available in this section entry.

Email:

Recent News

Recent Reviews

Recent Articles

Shop for Accessories: Cases, speakers, chargers, etc.