The iPhone and Apple's desktop computers may be vulnerable to hackers due to a flaw in their web browser, according to a security firm, which said it found a way to hack into the iPhone.

Baltimore-based Independent Security Evaluators, which tests its clients' computer security by hacking it, said three employees found a way to take control of iPhones through a Wi-Fi link or by tricking users into going to a website.

The iPhone is Apple's first mobile phone. It incorporates a music and video player as well as a web browser.

Charles Miller, principal security analyst at the firm, said a security weakness allows someone to take control of Apple's Safari web browser and see other applications on the device at the same time, which could potentially make users of Macintosh desktop computers vulnerable to attacks.

"The same problem actually exists on Apple's desktops," said Mr Miller. But he added that, while his firm had identified the risk for both desktops and phones, it had only written the code necessary to hack into the iPhone.

The security consultants, who took about a week and a half to work out the hack, said they were able to take control of an iPhone and make calls or send text messages, as well as access e-mails, voice mail, address books and call and web-browsing history.

Mr Miller said his company gave details about the hack and a potential security patch to Apple, but did not publicly release the details.

"We're looking into the report submitted by [ Independent Security Evaluators] and we always welcome feedback on how to improve our security," Apple spokeswoman Lynn Fox said.

Mr Miller said Apple could have avoided the risk by eliminating links between the browser and other applications.

"It turns out that on the iPhone there are probably some basic things they could have done that would have made it better," said Mr Miller.