This won't make people happy, but it's important.

SecurityFocus has uncovered a denial of service bug inherent i the iPhone wherein the handset can crash if a user is led to a maliciously crafted web site. The firm has stated that successful attacks can cause a kernel panic and leave the crashed iPhone open to remote code execution.

The bug has been found under both iPhone firmware version 1.1.2 and 1.1.3, which suggests that all released versions of the firmware may also be vulnerable.

Apple's Mobile Safari web browser is vulnerable to the denial-of-service attack, which results from a failure to handle exceptional conditions. The security hole is currently unpatched, leaving iPhone owners vulnerable to potential attacks until Apple issues a security update.

Apple has yet to release an official comment on the situation.

If you've seen this or your end or have ideas for a workaround, let us know over in the comments or forums.