iOS 6 Mobile Safari Users Affected by JavaScript Bug

**Akshay Masand** · 12-22-2012, 02:08 AM

If you’ve used Safari on your iOS 6 device lately (and chances are likely that you have), than you’ve probably noticed the new app banners that pop up on several sites whenever that site has a related app. The folks over at AppleInsider are reporting that it looks like the new banners have the ability to fiddle with your user settings without your consent. It seems like the new banners have the ability to re-enable JavaScript even if you’ve manually shut off the service on your iOS device.

Security expert Lisa Myers of Intego told the publication that the issue isn’t necessarily a troubling one, at least not yet that is. She had the following to say regarding the situation:

At the moment it doesn’t pose a thread, but we’ll continue to monitor it to make sure it doesn’t become more exploitable. There’s also the fact that few people actually disable JavaScript completely as it can partially, or totally, disable the majority of websites.

The simple act of re-enabling JavaScript isn’t an alarming privacy issue, so you don’t have to worry from that perspective. However, the fact that the new feature tweaks device settings without even informing the user about the change is a bit annoying and surprising at the same time. Hopefully, there isn’t any underlying security vulnerability that would deem our iOS devices unsecure.

Source: AppleInsider

**bmwraw8482** · 12-22-2012, 03:36 AM

...or more jailbreakable?

**ecd5000** · 12-22-2012, 03:40 AM

That does make you wonder if this could be used for a userland jailbreak?

**01GLS** · 12-22-2012, 06:55 AM

Jailbreakme 4.0

**KraXik** · 12-22-2012, 06:59 AM

Comex, are you reading this? Hint, hint!

**Jj2345** · 12-22-2012, 07:51 AM

Can someone alert comex on his twitter,maybe it's nothing special but who knows

**dsg** · 12-22-2012, 08:59 AM

It's a burned exploit if it ever was one and because its been found and reported about Appl£ will be working on a fix for it

**KraXik** · 12-22-2012, 09:37 AM

Originally Posted by dsg

It's a burned exploit if it ever was one and because its been found and reported about Appl£ will be working on a fix for it

So what if they fix it? They can't force me to update.

**Mrteacup** · 12-22-2012, 10:57 AM

It can only re-enable your javascript it doesn't have access to your files etc. too bad

i love the safari based jailbreaks

jailbreak me was awesome

**dsg** · 12-22-2012, 01:23 PM

Originally Posted by KraXik

So what if they fix it? They can't force me to update.

true, but whats with the attitude

edit: I don't think the devs would use it though because it's been burned, if it even was a exploit

**KraXik** · 12-22-2012, 03:55 PM

Originally Posted by dsg

true, but whats with the attitude

edit: I don't think the devs would use it though because it's been burned, if it even was a exploit

Attitude? Lol.

Text is text. You perceive it from the way you read it.

**Eonhpi** · 12-22-2012, 03:59 PM

Comex cant jailbreak any apple idevice im pretty sure that was in the contract after he left apple could be wrong tho

**Jato_BZ** · 12-22-2012, 10:48 PM

Originally Posted by Eonhpi

Comex cant jailbreak any apple idevice im pretty sure that was in the contract after he left apple could be wrong tho

Surely he will be running his own JB, all those Devs will be...

**dsg** · 12-22-2012, 11:13 PM

Originally Posted by KraXik

Attitude? Lol.

Text is text. You perceive it from the way you read it.

ok, feck you!!!!

how does that come across? I typed it with a smile on my face not really believing what I typed

**KraXik** · 12-23-2012, 01:37 AM

Originally Posted by dsg

ok, feck you!!!!

how does that come across? I typed it with a smile on my face not really believing what I typed

You're really clever. Good job.

**Shigoroku** · 12-23-2012, 06:38 AM

Originally Posted by Jj2345

Can someone alert comex on his twitter,maybe it's nothing special but who knows

It's not an exploit that can be used for jailbreaking. JavaScript is enabled by default and the overwhelming majority of users leave it that way. Some people can't stand anything but static web pages and they disable JavaScript.

This "exploit" simply allows some web pages to use JavaScript while you have it turned-off in Safari preferences.

**Mrteacup** · 12-23-2012, 09:44 AM

Originally Posted by Eonhpi

Comex cant jailbreak any apple idevice im pretty sure that was in the contract after he left apple could be wrong tho

I guarantee comex still has rights to jailbreaking just not helping create jailbreaks for the next year or so, because he can't be releasing info on apples products he helped develop etc. once their is software that he wasn't working with etc. he will be able to exploit etc.

**Frostbite** · 12-23-2012, 05:10 PM

Originally Posted by KraXik

Comex, are you reading this? Hint, hint!

Comex is no longer allowed to work on jailbreaks, it's part of the deal he signed with apple even though he is not working for them anymore

**KraXik** · 12-23-2012, 06:07 PM

Originally Posted by Frostbite

Comex is no longer allowed to work on jailbreaks, it's part of the deal he signed with apple even though he is not working for them anymore

Sure, but if he could post it under a different name. Xomec, perhaps?

**Frostbite** · 12-23-2012, 11:10 PM

Originally Posted by KraXik

Sure, but if he could post it under a different name. Xomec, perhaps?

Doubt he would risk the legal troubles. He wouldn't be able to take any donations either.

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.

Thread: iOS 6 Mobile Safari Users Affected by JavaScript Bug

iPhone News

General iPhone