Apple Clamps Down, Begins to Reject Apps Looking for UDID Numbers

Facing mounting privacy concerns, Apple has begun to reject mobile applications that require access to an iOS device’s unique device identifier number UDID, according to a report from the Web site Techcrunch. The company announced last summer it would be phasing out UDID numbers with the launch o...

Apple iPhone未接电话通知锁屏安全限制绕过漏洞

BUGTRAQ ID: 52124 iPhone是一部4频段的GSM制式手机，支持EDGE和802.11b/g无线上网（iPhone3G/3Gs/4支持WCDMA上网，iPhone4支持802.11n，支持电邮、移动通话、短信、网络浏览以及其他的无线通信服务 Apple的iOS 5中存在密码漏洞，可允许攻击者非法访问iPhone用户联系人列表、最近通话记录、语言邮件、短信及其他信息 0 Apple iOS 5.0.1 厂商补丁： Apple ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

iOS 5 Flaw Allows Unfettered Access to User's Contacts, Calls

A passcode flaw in Apple’s iOS 5 could allow unauthorized access to an iPhone user’s contacts list, recent calls, voicemail, text messages and more, according to a recent blog post from CultofMac.com. The post cites a vulnerability discovered by Safwan Saba of iPhoneIslam where the phone’s missed...

Hidden Apple iOS 5 Autocorrect Keyboard Bar Found by Researcher

In the month since Apple’s release of iOS 5, a handful of features and workarounds have been found hidden beneath the mobile operating system’s surface. A few days ago, another feature was added to that list – an autocorrect keyboard bar. According to 9to5Mac, the “Android-like” feature allows...

iPad 2 iOS 5 Lock Screen Bypass Vulnerability [Video Demonstration]

iPad 2 iOS 5 Lock Screen Bypass Vulnerability Marc Gurman at 9to5Mac has discovered a vulnerability on the iPad that allows for a limited bypass of the device's lockscreen. Anyone with an iPad Smart Cover can gain access to the previously-open app or the home screen if no app was open. By holding...

iPad 2 iOS 5 Lock Screen Bypass Vulnerability [Video Demonstration]

iPad 2 iOS 5 Lock Screen Bypass Vulnerability Marc Gurman at 9to5Mac has discovered a vulnerability on the iPad that allows for a limited bypass of the device's lockscreen. Anyone with an iPad Smart Cover can gain access to the previously-open app or the home screen if no app was open. By holding...

CVE-2011-3432

The UIKit Alerts component in Apple iOS before 5 allows remote attackers to cause a denial of service device hang via a long tel: URL that triggers a large size for the acceptance dialog...

Apple Mobile OfficeImport Framework Word文档解析内存破坏漏洞

CVE ID: CVE-2011-3260 OfficeImport组件是Apple移动设备使用的API，用于解析和显示Office文档格式。 Apple公司的OfficeImport组件在解析畸形Office文档时存在内存破坏漏洞，可使攻击者以当前用户权限执行任意代码。 在解析具有恶意构建记录的Word文件时，记录中的特定值可触发内存破坏漏洞，文件中的值被用作函数指针。 Apple iOS 5 厂商补丁： Apple ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://support.apple.com/...

Apple Releases iOS 5, Removes DigiNotar Certs From iPhones, iPads

Apple has released iOS 5, which includes a significant number of security updates, most notably the removal of the DigiNotar root certificates from the iOS trusted root list. The new operating system for iPhones, iPads and iPods also includes support for newer versions of the TLS protocol and...

Apple iOS 5 Released - Download Now !

Apple iOS 5 Released ! Apple's iOS 5 has been released, with owners of the iPhone 4, iPhone 3GS, iPad and iPad 2, along with the third- and fourth-gen iPod touch all getting the latest version of the mobile platform as a free update. Available to download for existing devices via iTunes, iOS 5 wi...

Apple iOS 5 Released - Download Now !

Apple iOS 5 Released ! Apple's iOS 5 has been released, with owners of the iPhone 4, iPhone 3GS, iPad and iPad 2, along with the third- and fourth-gen iPod touch all getting the latest version of the mobile platform as a free update. Available to download for existing devices via iTunes, iOS 5 wi...

Unsecured Calls, 5.0

New with iOS 5, the “unsecured call” call warning seems like a direct response to presentations like “Practical Cellphone Spying” at DEFCON, which demonstrated the ability of attackers to set up a phony GSM base station and intercept cellphone calls. iPhone users who are communicating over an...