JVN#88676089 Safari installed in iPod touch and iPhone vulnerable in handling server certificates

Safari is a web browser provided by Apple. Safari installed in iPod touch and iPhone accepts a self-signed or invalid server cerficate without the user’s explicit concent when connecting via SSL/TLS.

According to Apple, “When Safari accesses a website that uses a self-signed or invalid certificate, it prompts the user to accept or reject the certificate. If the user presses the menu button while at the prompt, then on the next visit to the site, the certificate is accepted with no prompt.”

Impact

This vulnerability could be exploited to conduct a man-in-the-middle attack. As a result, this may lead to the disclosure of sensitive information.

Solution

Update the Software
Apply the latest updates provided by the vendor.
For more information, refer to the vendor’s website.

Products Affected

• iPod touch v1.1 to v1.1.4
• iPhone v1.0 to v1.1.4
  For more information, refer to the vendor’s web site.