 |  |  |  |  |  |  |  |
Apple slow to patch iPhone security holes
According to a report at The Register Apple is failing to keep iPhone software up to date with security patches. This despite the iPhone 1.1.4 software being nothing more than a "pared-down version of Mac OS 10.5" it says.
The Jesus Phone is said to be vulnerable to a number of exploits which have been patched pretty damn quickly in desktop software. The article refers specifically to the Apple WebKit vulnerability which uses a bug that was present in some versions of Safari to allow data theft from the iPhone. Miller successfully demonstrated this in March during the CanSec West security conference.
Successfully enough to win $10,000 in the Pwn to Own competition there at any rate.
Miller has a tool to exploit the vulnerability on the iPhone which, after having clicked on a malicious link of course, the user of the handset could find outgoing calls being made by he attacker as well as data being compromised.
Other security researchers are warning of more to come, including one uncovered by Aviv Raff which can allow phishing attacks using the iPhone. Raff is not publishing details as he waits for an Apple patch to emerge.
The Jesus Phone is said to be vulnerable to a number of exploits which have been patched pretty damn quickly in desktop software. The article refers specifically to the Apple WebKit vulnerability which uses a bug that was present in some versions of Safari to allow data theft from the iPhone. Miller successfully demonstrated this in March during the CanSec West security conference.
Successfully enough to win $10,000 in the Pwn to Own competition there at any rate.
Miller has a tool to exploit the vulnerability on the iPhone which, after having clicked on a malicious link of course, the user of the handset could find outgoing calls being made by he attacker as well as data being compromised.
Other security researchers are warning of more to come, including one uncovered by Aviv Raff which can allow phishing attacks using the iPhone. Raff is not publishing details as he waits for an Apple patch to emerge.
0
•
•
•
•
The iPhone security will always be a target for hacks, as it is such a great breakthrough; people want more.
Check out Jailbreaking, Pwning, etc. your iPod touch and iPhone -- it won't stop with the 1.1.* era of Firmwares; 2.0*+ will also be hacked.
It's just how computing works. People have been finding exploits and hacks in hardware and software since when computers were first invented.
Check out Jailbreaking, Pwning, etc. your iPod touch and iPhone -- it won't stop with the 1.1.* era of Firmwares; 2.0*+ will also be hacked.
It's just how computing works. People have been finding exploits and hacks in hardware and software since when computers were first invented.
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Related Forum Features
Latest Apple Hardware Posts
- Today's Posts
- Unanswered Threads
advertising age amd android apple appstore at&t avatar blackberry bluegene botnet browser business cellphone cellphones china chips copyright crime data database development dos downloads economy email encryption energy enterprise facebook firefox games gaming google government hacking hardware ibm ibm.news intel intelibm internet iphone ipod itunes law leopard linux mac malware medicine memory microsoft mobile mobilephone mozilla mp3 music news openoffice opensource os pc porn privacy ps3 recession redhat research russia search security sex smartphone socialnetworking software sony spam stevejobs sun supercomputer supercomputing survey technology trends trojan twitter ubuntu uk video virus vista web windows windows7 working x86 xbox yahoo youtube
