Never miss an update Follow AppleInsider
Thursday, July 02, 2009, 03:00 pm
Apple working to fix unreleased iPhone SMS exploit
Tipped off by a Mac OS X security expert, Apple is working to repair a serious security flaw in the iPhone’s operating system – one that could allow an attacker to track the phone’s location via GPS, eavesdrop on conversations via the microphone, or create a mobile bot net capable of unleashing denial of service attacks.The attack takes advantage of a vulnerability in the phone’s short messaging service, or SMS, feature, allowing an outside party into the phone’s root access without the owner’s knowledge. Security researcher Charles Miller, co-author of The Mac Hacker’s Handbook, announced his discovery Thursday at the SyScan Conference in Singapore, according to Computerworld.
Apple plans to have the fix released later this month, before Miller gives his scheduled speech at the Black Hat Technical Security Conference in Los Angeles. At the July 25-30 conference, Miller will be joined by Colin Mulliner for a talk entitled “Fuzzing the Phone in Your Phone,” which will show attendees how to discover vulnerabilities in a variety of smartphones.
Miller has not specifically detailed how the SMS exploit is done, citing an agreement with Apple. But he will discuss the attack in length at the Black Hat conference.
The exploit takes advantage of the fact that SMS can send binary code to an iPhone. That code is automatically processed without user interaction, and can be compiled from multiple messages, allowing larger programs to be sent to a phone.
For a widely-adopted platform, Apple’s iPhone has had remarkably little in the way of discovered vulnerabilities in its short history. In 2007, a security firm – including Miller – notified Apple of the phone’s first security flaw, soon after the hardware had been released. It was subsequently fixed by Apple.
Miller said that the iPhone’s stripped-down version of OS X makes it more secure than the full-fledged operating system. And because it lacks support for Adobe Flash and Java, isolates individual applications from one another, and only allows software that has been digitally signed by Apple, it is less likely to have security flaws than a full-form computer.
On Topic: iPhone
- IDC gives Apple 9% of Chinese smartphone market, double the prevailing growth rate
- New patent lawsuit targets Apple over iPhone 5's call forwarding feature
- Researchers crack default iPhone Personal Hotspot passwords in under a minute
- Leaked schematics reveal what case makers expect Apple's low-cost iPhone & 'iPhone 5S' will look like
- High resolution images claim to show 'iPhone 5S' and iPhone 5 display assemblies side-by-side
Previous Comments View All
Quote:
For a widely-adopted platform, Apple's iPhone has had remarkably little in the way of discovered vulnerabilities in its short history. In 2007, a security firm - including Miller - notified Apple of the phone's first security flaw, soon after the hardware had been released. It was subsequently fixed by Apple.
Oh, I beg to differ greatly and I have a link to prove that 46 vulnerabilities were fixed in iPhone 3.0.
I'll be right back with a link.
Quote:
iPhone OS 3.0 fixes 46 vulnerabilities
Apple has released version 3.0 of its iPhone mobile operating system. The update not only includes several new features, but also fixes 46 security vulnerabilities. Version 3.0 of the iPhone OS fixes 23 vulnerabilities in WebKit and Safari alone. According to Apple, many of the problems could have lead to the execution of arbitrary code when visiting a maliciously crafted website. Other vulnerabilities include unexpected application termination or arbitrary code execution when opening a maliciously crafted PDF document or image file and possible disclosure of sensitive information when connecting to a malicious Exchange server.
Apple has released version 3.0 of its iPhone mobile operating system. The update not only includes several new features, but also fixes 46 security vulnerabilities. Version 3.0 of the iPhone OS fixes 23 vulnerabilities in WebKit and Safari alone. According to Apple, many of the problems could have lead to the execution of arbitrary code when visiting a maliciously crafted website. Other vulnerabilities include unexpected application termination or arbitrary code execution when opening a maliciously crafted PDF document or image file and possible disclosure of sensitive information when connecting to a malicious Exchange server.
http://www.h-online.com/security/iPh...--/news/113563
http://arstechnica.com/apple/news/20...rabilities.ars
http://blogs.zdnet.com/security/?p=3644
Also Apple can replace the iPhone glass at retail stores. It uses a suction type device to pull the old one off.
Quote:
Originally Posted by thespaz 
First!
First!
why do you come to the forums just to say that?
Quote:
Originally Posted by alectheking
why do you come to the forums just to say that?
why do you come to the forums just to say that?
I think I know of him from MacRumors and he seems to have self-esteem issues.
What's *not* stated in Miller's description of the vulnerability is that the other apps are sandboxed anyway, so even if the hacker sends an SMS with (presumably a picture attachment), gets the code to run and gets root access, all they have access to is the low level system stuff and the automatic messages. It's hard to tell until he fully describes it, but it doesn't seem like this would give anyone access to your data, just some low level phone hardware items.
Quote:
Originally Posted by Napoleon_PhoneApart
I think I know of him from MacRumors and he seems to have self-esteem issues.
I think I know of him from MacRumors and he seems to have self-esteem issues.
Also anyone who uses "the spaz" as a nickname has some fairly obvious self-esteem issues.
Quote:
Originally Posted by thespaz
First!
First!
I already covered this in the previous thread!
This "vulnerability" does nothing of any real consequence.
More FUD from those unwilling to stomach that Apple is rearranging entire industries as we speak.
So I guess this means you should refrain from making homemade sex videos with your iPhone until this security hole has been plugged.
Quote:
Originally Posted by Napoleon_PhoneApart
I think I know of him from MacRumors and he seems to have self-esteem issues.
I think I know of him from MacRumors and he seems to have self-esteem issues.
Damn, well he needs to stay there and not do that its just plain stupid. Teckstud should show him his way back and stay with him there to keep company.
Latest Apple Headlines
-
Analyst recants claim that Apple will add Retina display to iPad mini before 2014
~33 minutes ago -
First benchmarks for redesigned Mac Pro reportedly appear online
~42 minutes ago -
Best Buy recalls 5,100 third-party MacBook batteries for fire risk
~2 hours ago -
Twitter heat map shows iPhone use by the affluent, Android by the poor
~2 hours ago -
IDC gives Apple 9% of Chinese smartphone market, double the prevailing growth rate
~3 hours ago - more...
Want to write for AppleInsider? Submit your application now!
| Model | White | Black | |
|---|---|---|---|
| iPad mini (WiFi only) | |||
| 16GB WiFi |  |
$329.00 | $329.00 |
| 32GB WiFi | |
$429.00 | $429.00 |
| 64GB WiFi | |
$529.00 | $529.00 |
| iPad mini (WiFi + 4G) | |||
 |
 |
 |
|
| 16GB 4G White | $459.00 | $459.00 | $459.00 |
| 32GB 4G White | $559.00 | $539.99 | $559.00 |
| 64GB 4G White | $659.00 | $659.00 | $629.99 |
| 16GB 4G Black | $459.00 | $459.00 | $459.00 |
| 32GB 4G Black | $559.00 | $539.99 | $539.99 |
| 64GB 4G Black | $659.00 | $659.00 | $629.99 |
Lowest Prices Anywhere!
| Model | Price | You Save |
|---|---|---|
| 11"1.3GHz/4GB/128GB | $964.18* | $34.82 |
| 11" 1.3GHz/8GB/128GB | $1,061.18* | $37.82 |
| 11" 1.3GHz/8GB/256GB | $1,255.18* | $43.82 |
| 11"1.7GHz/8GB/128GB | $1,206.68* | $42.32 |
| 11"1.7GHz/8GB/256GB | $1,400.68* | $48.32 |
| 11" 1.7GHz/8GB/512GB | $1,691.68* | $57.32 |
| 13" 1.3GHz/4GB/128GB | $1,061.18* | $37.82 |
| 13" 1.3GHz/4GB/256GB | $1,255.18* | $43.82 |
| 13" 1.3GHz/8GB/256GB | $1,352.18* | $46.82 |
| 13" 1.3GHz/8GB/512GB | $1,643.18* | $46.82 |
| 13" 1.7GHz/8GB/256GB | $1,497.00* | $52.00 |
| 13" 1.7GHz/8GB/512GB | $1,788.68* | $60.32 |
* price with Promo Code:
APPLEINSIDER01
|
||
| Click for even more configurations | ||
First!