HP’s Pwn2Own 2013 contest saw two white hat hackers exploit Apple’s Safari browser for the iPhone 5 and the Samsung Galaxy S4. The vulnerabilities allow the attacker to wholly compromise the device in several ways, such as using a drive-by download to install malware on the phone. Both hacks would require user interaction, but took no longer than five minutes to perform. Organisers from the HP Zero Day Initiative have informed Samsung and Apple about the flaws and they will be working to address.
Source: https://thehackernews.com/2013/11/samsung-galaxy-s4-and-iphone-5-zero-day_13.html