Apple is currently planning to issue two fixes for security flaws that allow attackers to remotely install malware on iPhones, iPads and iPod touches when exploited simultaneously.

The critical vulnerabilities cam to light over the weekend but weren’t acknowledged by Apple until Wednesday. Which also happened to be the day that the German Government warned of the vulnerabilities, which can be exploited via malicious websites or e-mails without the input of the user.

An Apple spokes woman issued a statement saying that they are aware of the issues and that they have ?already developed a fix and it will be available to customers in an upcoming software update.? but no dates were given for availability.

Only one use of the vulnerabilities have been documented so far on jailbreakme.com, which jailbreaks an idevice simply by visiting the site and flicking the slider. This hack is not malicious, but there?s no reason why this method couldn?t be used for more sinister things. The German Federal Office for Information Security has warned that this could happen any time. ?it has to be expected that hackers will soon use the weak spots for attacks. this allows potential attackers access to the complete system, including administrator rights.?

Jailbreakme.com exploits two distinct iOS flaws to execute the hack. the first is a bug in the software that parses fonts in PDF files, this allows hackers to inject any code they like into the document-viewing app. The second allows them to break out of the built-in security sandbox, the code can then access the root of the device.

So, until a patch is released, user should be wary of following links on sites, chat messages and e-mails. Websense has provided a list of other browsers that require user input in order to open a PDF file. Currently iPhones are set to automatically open PDFs included in e-mails, so you may want to be anti social for a while.