Apple Fixes iPhone SMS Vulnerability Highlighted at Black Hat

 
 
By Brian Prince  |  Posted 2009-07-31 Email Print this article Print
 
 
 
 
 
 
 

Apple has swatted a bug in the iPhone that security researchers Charlie Miller and Collin Mulliner spotlighted at the Black Hat security conference in Las Vegas.

Apple has fixed the iPhone vulnerability highlighted at the Black Hat security conference yesterday. 

The update plugged a memory corruption issue in the decoding of SMS messages that could be exploited to remotely execute code on the phone. The vulnerability was put in the spotlight after a presentation by researchers Charlie Miller and Collin Mulliner. 

The two demonstrated how hackers could use the iPhone's texting capability to attack users, sending messages to victims in an attempt to compromise the phone

In a statement, Apple officials said that no one has been able to use the vulnerability to take control of the iPhone and gain access to personal information. 

"We appreciate the information provided to us about SMS vulnerabilities that affect several mobile phone platforms," a spokesman said. "This morning, less than 24 hours after a demonstration of this exploit, we've issued a free software update that eliminates the vulnerability from the iPhone." 

A paper Miller and Mulliner published on the situation in June is available here.
 

 

 
 
 
 
 
 
 
 
 
 
 

Submit a Comment

Loading Comments...
 
Manage your Newsletters: Login   Register My Newsletters























 
 
 
 
 
 
 
 
 
 
 
Thanks for your registration, follow us on our social networks to keep up-to-date
Rocket Fuel