CVE-2008-3632

Name of the Vulnerable Software and Affected Versions Apple iPod touch versions 1.1 through 2.0.2 Apple iPhone versions 1.0 through 2.0.2 Qt (affected versions not specified)

Description The issue is related to a use-after-free vulnerability in WebKit and an error in resource management in the Qt cross-platform framework. This allows remote attackers to execute arbitrary code, cause a denial of service, or access and modify confidential data via a specially crafted web page. The vulnerability can be exploited through crafted Cascading Style Sheets (CSS) import statements or other specially created web pages.

Recommendations For Apple iPod touch versions 1.1 through 2.0.2, update to a version outside of this range to resolve the issue. For Apple iPhone versions 1.0 through 2.0.2, update to a version outside of this range to resolve the issue. For Qt, at the moment, there is no information about a newer version that contains a fix for this vulnerability.