logo

iphone

Category: tools | Posted by Avatar Staff 300 days ago
Via: http://blog.metasploit.com | Tags: Cracking the iPhone part comments Discuss  
In part one of "Cracking the iPhone", I described the libtiff vulnerability. In part two, I walked through the process of exploiting it. In part two point one, I covered a new exploit approach that resulted in reliable code execution. The one piece still missing is what to do once code execution is obtained. An unmodified iPhone does not include an interactive shell, nor any of the standard Unix tools. In order to make this exploit useful, the user needs a payload that can install arbitrary executables on read more »
addto Add this link to... report Bury 
Category: tools | Posted by Avatar Staff 300 days ago
Via: http://blog.metasploit.com | Tags: Cracking the iPhone part comments Discuss  
In part two of "Cracking the iPhone", the final result was a working exploit for the libtiff vulnerability. This exploit depended on four key addresses to work properly. The first address was the stack pointer where our string was stored. The stack pointer is static across the same version of the application, but does change between major versions. Due to this address change, a different stack address had to be used for MobileMail versus MobileSafari, and version 1.02 had a different address than 1.1.1. Th read more »
addto Add this link to... report Bury 
Category: tools | Posted by Avatar Staff 300 days ago
Via: http://blog.metasploit.com | Tags: Cracking the iPhone part comments Discuss  
In part one of "Cracking the iPhone", I described the libtiff vulnerability, its impact on iPhone users, and released the first version of my hacked up debugger. In this post, I will walk through the process of actually writing the exploit.First off, a new version of weasel (hdm-0.02) has been released. This version includes an entirely new disassembly backend, courtesy of libopcodes, and supports thumb-mode instructions. Thumb is a 16-bit instruction mode for ARM processors that is designed to save memory read more »
addto Add this link to... report Bury 
Category: tools | Posted by Avatar Staff 300 days ago
Via: http://blog.metasploit.com | Tags: Cracking the iPhone part comments Discuss  
In my last post, I described the Apple iPhone in terms of being a security tool and a security target. At the time, I had just finished a first pass on iPhone shellcode. What I didn't realize was that a stock iPhone does not include a /bin/sh executable, nor any of the standard Unix command line tools. My shellcode would only be useful against iPhones which had been updated with the BSD environment package.A few days later, Apple released the 1.1.1 update. This update removed any installed third-party pack read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 298 days ago
Via: http://go.theregister.com | Tags: nasty javascript code can zap new iphone ipod touch comments Discuss  
Kernel bogeySecurity researchers have discovered you can crash an iPhone through the medium of a cleverly crafted webpage.… read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 297 days ago
Via: http://radajo.blogspot.com | Tags: guide to upgrade the iphone to securing your otb iphone comments Discuss  
Apple released the iPhone 1.1.3 firmware version on January 2008. From a security perspective and according to Apple, the iPhone 1.1.2 presents a few vulnerabilities:A memory corruption issue in Safari's handling of URLs may cause arbitrary code execution. If you browse to a maliciously crafted URL, you are iP0wn3d! (DoS exploit publicly available in milw0rm).An incorrect handling of emergency calls allows users with physical access to the iPhone to launch an application avoiding the passcode lock screen.S read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 293 days ago
Via: http://go.theregister.com | Tags: teen hacker reunlocks apples iphone comments Discuss  
Gets firm with firmwareA teen hacker known for his deftness with iPhones has figured out how to unlock models running the latest firmware versions by cracking a protection that that has frustrated hackers for weeks.… read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 222 days ago
Via: http://www.infoworld.com | Tags: iphone moves step closer im comments Discuss  
A recent patent filing indicates that Apple is getting closer to adding its own instant messaging client to the iPhone. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 216 days ago
Via: http://www.infoworld.com | Tags: check point adds vpn access iphone comments Discuss  
Check Point Software Technologies on Monday announced support for the iPhone through its VPN-1 product, a Virtual Private Networking (VPN) software tool. read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 192 days ago
Via: http://lists.jammed.com | Tags: isn wipe data iphone comments Discuss  
http://blogs.zdnet.com/security/?p=1165By Ryan NaraineZero DayMay 22nd, 2008In reponse to reports that personally identifiable private information can be easily swiped from used iPhones sold on eBay, the tireless Rich Mogull has cooked up a nifty way to wipe data from iPhones.Mogull admits his process is "not perfect" but it does look to be an easy way to overload the iPhone with music files to force an overwrite of the device's storage. The Securosis.com consultant recommends the steps are foll read more »
addto Add this link to... report Bury 
Category: news | Posted by Avatar Staff 184 days ago
Via: http://go.theregister.com | Tags: apple store detains teens installing iphone game comments Discuss  
Coppers called over demo unit downloadFour teens in Palo Alto, California, say they were detained and photographed by an Apple store after they downloaded a third-party application to an iPhone demo unit.… read more »
addto Add this link to... report Bury