A Single Text Message Can Cripple Your iPhone

A critical security flaw has been found in the SMS system for the iPhone. According to IDG, Mac OS X security experts Charlie Miller and Colin Mulliner revealed that a specially coded text message could remotely crash an iPhone.

It's possible that the security hole could pave the way for an attacker to run malicious code on the iPhone that would allow it to access the GPS, microphone or internet connection.

Miller did admit that he hadn't found a way to access those functions, but doesn't ruled it out. "I don't have a working exploit for it, just a suspicious looking crash," he said.

The stripped down version of OS X that powers the iPhone is still relatively secure, according to Miller. Applications on the phone run inside their own sandboxes, which should restrict them from tapping into portions of the device that it shouldn't be available. But for one reason or another, the SMS function isn't as protected and could give an attacker root access.

The security experts have already shared their findings with Apple, which hopefully means the hole will be patched up in an upcoming software update – preferably before someone takes advantage of the security flaw with nefarious intentions.

About the author
This thread is closed for comments
27 comments
    Top Comments
  • What they have managed to do, is to prove that the SMS service on an iPhone most likely have root access. They build this prof on the fact that code sent through an SMS has crashed their iPhone without the users involvement.
    The reason they're coming out with their warning is because they fear someone could use this exploit for worse things than just an annoying crash, such as installing software for surveillance(location, video and voice access) or the buildup of a botnet using iPhones.

    As for Apple I expect they will say it's unlikely someone will use the exploit and won't fix it until after the first real attack is documented, instead of now when they got the warning.
    15
  • great! The new iPhone cooks and crashes! Now all it needs is a controversial app stor... oh wait...
    11
  • Other Comments
  • I'm confused - so he doesn't have a working exploit for it but he suspects there's a suspicious looking crash? LOL Now that's really scientific!
    -8
  • What they have managed to do, is to prove that the SMS service on an iPhone most likely have root access. They build this prof on the fact that code sent through an SMS has crashed their iPhone without the users involvement.
    The reason they're coming out with their warning is because they fear someone could use this exploit for worse things than just an annoying crash, such as installing software for surveillance(location, video and voice access) or the buildup of a botnet using iPhones.

    As for Apple I expect they will say it's unlikely someone will use the exploit and won't fix it until after the first real attack is documented, instead of now when they got the warning.
    15
  • IT JUST WORKS !!!! ROFL

    yeah, full of shit. Apple has failed again. LMAO
    3