Description
Apple iPhone 1.1.1, with Bluetooth enabled, allows physically proximate attackers to cause a denial of service (application termination) and execute arbitrary code via crafted Service Discovery Protocol (SDP) packets, related to insufficient input validation.
Affected products
- Apple / iPhone1.0 – 1.0
- Apple / iphone_os1.0.1 – 1.0.1
- Apple / iphone_os1.0.2 – 1.0.2
References
- MAILING_LISThttp://lists.apple.com/archives/security-announce/2007/Sep/msg00001.html
- VENDOR_ADVISORYhttp://docs.info.apple.com/article.html?artnum=306586
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/36844
- MISChttp://osvdb.org/38538
- VENDOR_ADVISORYhttp://secunia.com/advisories/26983
- MISChttp://www.securityfocus.com/bid/25855
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/3287
- MISChttp://securitytracker.com/id?1018752