Patch for the TIFF image handling vulnerability made famous by H D Moore, and used for 'jailbreaking' iPhones. Interaction with a malicious TIFF image would lead to arbitrary code being executable on the iPhone and iPod Touch.

Description:

Version 1.1.2 of the iPhone and iPod Touch Operating System has been made available, fixing the image handling vulnerability made famous by H D Moore. The particular vulnerability patched allows for software of the attacker's / user's choice to be run on the affected handheld devices once a modified image file is interacted with.

Mitigation:

Apply Version 1.1.2 of the operating system, as highlighted by iTunes when an affected device is connected (with an active Internet connection and the latest iTunes version).

Updates:

Source:

http://docs.info.apple.com/article.html?artnum=61798

Exploits:

CVE-ID: CVE-2006-3459, CVE-2006-3461, CVE-2006-3462, CVE-2006-3465