Heads up for iOS4 Users

[Glitchny]

I figured I'd give you guys a heads up. Apparently a big security flaw has been found in iOS that allows a program complete access to your phone.

Linky here

I guess the solution for now is to avoid .pdf files from non-trusted sources. Which generally isn't hard to do. It is apparently using the same technique that they used to jailbreak the phone so I imagine it will get fixed relatively quickly.

 

[tatteredpotato]

Seeing as they used an exploit in the browser to jailbreak it's not too surprising it can be used for malicious intentions. I wouldn't be surprised if the EVO had similar issues with it's flash lite player, as it was exploited to get root after the OTA update.

 

[Glitchny]

Oh I'm sure there are similar issues with other phones I just wanted to get the word out so people knew etc.

 

[tk149]

You may get better visibility if you put this in the All things Apple Forum and change the title to "SECURITY BREACH for iOS4"

 

[Platypus]

btw this affects more than ios4

 

[rudeguy]

I keep waiting for something nasty to hit Android. We all download and run scripts all the time that we have no way of verifying.

 

[Spoooon]

I keep waiting for something nasty to hit Android. We all download and run scripts all the time that we have no way of verifying.

I think that, to a certain extent, the community protects us. I avoid random ROMs and stick with individuals that have a "reputation" to protect and try to be as informed as possible about the various scripts and what not. It's a matter of time though. And people will use it as "evidence" for why phones need to be locked down.

 

[Patranus]

btw this affects more than ios4

Seriously. Doesn't the EVO use a exploit in (the coveted) flash light application to root the device?

 

[Glitchny]

Seriously. Doesn't the EVO use a exploit in (the coveted) flash light application to root the device?

I'm not saying it doesn't happen to other phones. This thread was in no way intended to deride Apple/iPhone users. I posted it as more of a PSA so people were aware if they weren't already. No need to start comparing OS flaws as that door swings both ways.

 

[tatteredpotato]

Seriously. Doesn't the EVO use a exploit in (the coveted) flash light application to root the device?

I wouldn't be surprised if the EVO had similar issues with it's flash lite player, as it was exploited to get root after the OTA update.

 

[FallenHero]

Seriously. Doesn't the EVO use a exploit in (the coveted) flash light application to root the device?

It was the exploit, yes. However, the 2.2 update patched it, as no known root method exists at the moment.