Várias vulnerabilidades detectadas recentemente no Iphone

Privacidade:

The Mail component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 does not provide an option to disable remote image loading in HTML email, which allows remote attackers to determine the device address and when an e-mail is read via an HTML email containing an image URL.
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0960


Negação de serviço:

The MPEG-4 video codec in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service (device reset) via a crafted MPEG-4 video file that triggers an "input validation issue."
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0959


The Telephony component in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service (device reset) via a crafted ICMP echo request, which triggers an assertion error related to a "logic issue."
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1683


WebKit in Apple iPhone OS 1.0 through 2.2.1 and iPhone OS for iPod touch 1.1 through 2.2.1 allows remote attackers to cause a denial of service (device reset) via a web page containing an HTMLSelectElement object with a large length attribute.
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1692