You are here: silicon.com > Software > Security Strategy

Security Strategy

Apple plugs iPhone SMS flaw

Memory corruption left iPhone open to attack

Tags: iphone, apple, sms

Printer Friendly Email Story RSS

By Larry Dignan

Published: 3 August 2009 14:31 GMT

Apple has plugged an SMS flaw that could enable an attacker to take complete control over an iPhone.

Researchers Charlie Miller and Collin Mulliner said at the Black Hat security conference that an attacker could use the SMS exploit to make calls, swipe data and send text messages. The attack was enabled by a memory corruption bug in all iPhone operating systems.

Apple was notified of the problem six weeks ago but did not deliver a patch. That changed on Friday when Apple patched CVE-2009-2204.

Apple said: "A memory corruption issue exists in the decoding of SMS messages. Receiving a maliciously crafted SMS message may lead to an unexpected service interruption or arbitrary code execution. This update addresses the issue through improved error handling."

Original article from ZDNet.com: Apple plugs iPhone SMS hole

Add Comment Add comment  Printer Friendly Print story with   Email Story Email story  
In
Applications

Operating Systems

SOA/Web Services

Malware

Security Strategy


Related Links

Minority Report: iPhone App Store takes my breath away

Macs and iPhones Apple of its eye as profits rise

Minority Report: iPhone puts the 'smart' in smartphone

Apple puts Google on a leash over Latitude for iPhone

Is Apple's iPhone App Store too far ahead for others to catch up?

  1. Zones
  2. Management
  3. Networks
  4. Software
  5. IT Services
  6. Hardware
  1. Verticals
  2. Public Sector
  3. Financial Services
  4. Retail & Leisure

Bob Tarzey Why you must rein in your power users When they do damage, it can be catastrophic to your business

Jon Collins Is losing a mobile device really such a big deal? How to minimise the damage to your business

UK ID cards rollout hit by delay as launch date revealed

Bletchley Park's World War Two codebreakers in their own words

'You're responsible for your own wi-fi security' say ISPs

'UK must up privacy safeguards following Phorm'

The top 10 technologies you need to plan for next year


  • Jobs
Technical Analyst - SMS, SCCM, WSUS - Patch & Release

The role will involve the assessment of vulnerabilities, patch testing and application deployment via remote systems such as SMS/SCCM, WSUS and ...

IT Operations System Infrastructure Operations Engineer

Patch management on Windows and UNIX (Solaris and SUSE Enterprise Linux). This role involves carrying out daily, weekly and monthly checklists, ...

iPhone Mobile Developer - Manchester

iPhone Mobile Developer - Manchester. Our growing client based in Manchester is currently looking for a skilled iphone Mobile Developer to design and ...

Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.

CEO Dashboard Management: Why Creating Visual Reports You Can't Hide From Will Help...

Virtual Private Servers (VPS)

Looking for a fast payback? 10 Minutes with Free Tool Can Save Thousands

The Truth About Wasteful Spending on Software: How to Stop Giving Your Software Vendors...

Martin Brokers cashes in on back-up swap

VocaLink makes virtualisation pay

Sony Pictures sets sights on best IT Oscar

Co-op Group kicks "server sprawl" into touch

Arts Council gets tech troubleshooting boost

Torex tech treats Thorntons to quicker sales

Stories from the web...


ID card database: 500 names added in first month

Women in IT: Tech has an image problem

Tesco Mobile to get a taste of Apple's iPhone

Marketing chiefs: Are you spamming your customers?

IT skills shortage squashed by recession?

Users tell SAP: 'We need to talk more'




Quick Sitemap Links: