Operating System: iPhone ≈ Packet Storm

Operating System: iPhone ≈ Packet Storm Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 07:54:35 GMT Packet Storm 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1656969864&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=Operating%20System%3A%20iPhone%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Fos%2Fiphone%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1656969864.1338191675.1338191675.1338191675.1%3B%2B__utmz%3D32867617.1338191675.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) iOS Application (In)Security http://packetstormsecurity.org/files/112482/iosapp-insecurity.pdf http://packetstormsecurity.org/files/112482/iosapp-insecurity.pdf http://packetstormsecurity.org/files/112482/iOS-Application-In-Security.html Sun, 06 May 2012 01:48:08 GMT This whitepaper details some of the vulnerabilities observed over the past year while performing regular security assessments of iPhone and iPad applications. MDSec documents some of the vulnerabilities identified as well as the methods to exploit them, and recommendations that developers can adopt to protect their iOS applications. It covers not only the security features of the platform, but provides in depth information on how to perform both black box and white box iOS penetration tests, along with suggested methodologies and compliance. IPhone TreasonSMS HTML Injection / File Inclusion http://packetstormsecurity.org/files/112088/VL-154.txt http://packetstormsecurity.org/files/112088/VL-154.txt http://packetstormsecurity.org/files/112088/IPhone-TreasonSMS-HTML-Injection-File-Inclusion.html Mon, 23 Apr 2012 18:55:33 GMT IPhone TreasonSMS suffers from html injection and file inclusion vulnerabilities. Vopium Clear Text Disclosure http://packetstormsecurity.org/files/108884/vopium-disclose.txt http://packetstormsecurity.org/files/108884/vopium-disclose.txt http://packetstormsecurity.org/files/108884/Vopium-Clear-Text-Disclosure.html Sat, 21 Jan 2012 05:18:29 GMT Vopium for Android and iPhone leaks various data such as your password by passing it in the clear. iPhone Forensics On iOS 5 http://packetstormsecurity.org/files/108880/iphoneios5-forensics.pdf http://packetstormsecurity.org/files/108880/iphoneios5-forensics.pdf http://packetstormsecurity.org/files/108880/iPhone-Forensics-On-iOS-5.html Fri, 20 Jan 2012 13:22:22 GMT This is a brief whitepaper discussing how to perform forensics on iOS 5 on the iPhone. Hacking iOS Devices http://packetstormsecurity.org/files/107600/hacking-ios.pdf http://packetstormsecurity.org/files/107600/hacking-ios.pdf http://packetstormsecurity.org/files/107600/Hacking-iOS-Devices.html Wed, 07 Dec 2011 16:09:44 GMT Whitepaper called Hacking Dispositivos iOS. It demonstrates how dangerous it is to be connected to a wireless network with an iOS device that has OpenSSH enabled. Written in Spanish. iPhone/iPad Phone Drive 1.1.1 Directory Traversal http://packetstormsecurity.org/files/103833/phonedrive-traversal.txt http://packetstormsecurity.org/files/103833/phonedrive-traversal.txt http://packetstormsecurity.org/files/103833/iPhone-iPad-Phone-Drive-1.1.1-Directory-Traversal.html Tue, 09 Aug 2011 16:54:28 GMT iPhone/iPad Phone Drive version 1.1.1 suffers from a directory traversal vulnerability. Secunia Security Advisory 44154 http://packetstormsecurity.org/files/100493/sa44154.txt http://packetstormsecurity.org/files/100493/sa44154.txt http://packetstormsecurity.org/files/100493/Secunia-Security-Advisory-44154.html Sun, 17 Apr 2011 06:25:13 GMT Secunia Security Advisory - Some vulnerabilities has been reported in Apple iOS for iPhone 4 (CDMA), which can be exploited by malicious people to compromise a vulnerable device. Secunia Security Advisory 43832 http://packetstormsecurity.org/files/99719/sa43832.txt http://packetstormsecurity.org/files/99719/sa43832.txt http://packetstormsecurity.org/files/99719/Secunia-Security-Advisory-43832.html Thu, 24 Mar 2011 08:52:53 GMT Secunia Security Advisory - A vulnerability has been reported in Apple iPhone iOS, which can be exploited by malicious people to compromise a vulnerable device. Zero Day Initiative Advisory 11-109 http://packetstormsecurity.org/files/99602/ZDI-11-109.txt http://packetstormsecurity.org/files/99602/ZDI-11-109.txt http://packetstormsecurity.org/files/99602/Zero-Day-Initiative-Advisory-11-109.html Tue, 22 Mar 2011 20:31:31 GMT Zero Day Initiative Advisory 11-109 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Safari on the iPhone. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the support for parsing Office files. When handling the OfficeArtMetafileHeader the process trusts the cbSize field and performs arithmetic on it before making an allocation. As the result is not checked for overflow, the subsequent allocation can be undersized. Later when copying into this buffer, memory can be corrupted leading to arbitrary code execution under the context of the mobile user on the iPhone. Checkview 1.1 For iPhone / iPod Touch Directory Traversal http://packetstormsecurity.org/files/99312/checkview-traversal.txt http://packetstormsecurity.org/files/99312/checkview-traversal.txt http://packetstormsecurity.org/files/99312/Checkview-1.1-For-iPhone-iPod-Touch-Directory-Traversal.html Tue, 15 Mar 2011 01:28:26 GMT Checkview version 1.1 for iPhone / iPod Touch suffers from a directory traversal vulnerability. Air Contacts Lite Denial Of Service http://packetstormsecurity.org/files/99173/DCA-2011-0007.txt http://packetstormsecurity.org/files/99173/DCA-2011-0007.txt http://packetstormsecurity.org/files/99173/Air-Contacts-Lite-Denial-Of-Service.html Thu, 10 Mar 2011 22:42:22 GMT The Air Contacts Lite iPhone / iPod application suffers from a denial of service vulnerability. Apple iPhone 4 Passphrase Disclosure http://packetstormsecurity.org/files/99029/TEHTRI-SA-2010-036.txt http://packetstormsecurity.org/files/99029/TEHTRI-SA-2010-036.txt http://packetstormsecurity.org/files/99029/Apple-iPhone-4-Passphrase-Disclosure.html Mon, 07 Mar 2011 15:58:33 GMT Apple iPhone 4 with iOS 4.3 (8F190) suffers from a passphrase disclosure vulnerability that allows all local processes access to it. iFileExplorer Free Directory Traversal http://packetstormsecurity.org/files/98934/ifileexplore-traversal.txt http://packetstormsecurity.org/files/98934/ifileexplore-traversal.txt http://packetstormsecurity.org/files/98934/iFileExplorer-Free-Directory-Traversal.html Sat, 05 Mar 2011 01:11:28 GMT iFileExplorer Free for iPod Touch / iPhone version 2.8 suffers from a remote directory traversal vulnerability. Zero Day Initiative Advisory 11-101 http://packetstormsecurity.org/files/98864/ZDI-11-101.txt http://packetstormsecurity.org/files/98864/ZDI-11-101.txt http://packetstormsecurity.org/files/98864/Zero-Day-Initiative-Advisory-11-101.html Thu, 03 Mar 2011 15:54:37 GMT Zero Day Initiative Advisory 11-101 - This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple's iPhone Webkit library. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way the library implements the .sort function for an array. The library will trust the implementation of a particular method which when executed can be used to manipulate elements out from underneath it. This can lead to code execution under the context of the application. TIOD 1.3.3 For iPhone / iPod Touch Directory Traversal http://packetstormsecurity.org/files/98860/tiod-traversal.txt http://packetstormsecurity.org/files/98860/tiod-traversal.txt http://packetstormsecurity.org/files/98860/TIOD-1.3.3-For-iPhone-iPod-Touch-Directory-Traversal.html Thu, 03 Mar 2011 15:50:45 GMT TIOD version 1.3.3 for iPhone / iPod Touch suffers from a directory traversal vulnerability. iPhone MyDocs 2.7 Directory Traversal http://packetstormsecurity.org/files/98726/iphonemydocs-traversal.txt http://packetstormsecurity.org/files/98726/iphonemydocs-traversal.txt http://packetstormsecurity.org/files/98726/iPhone-MyDocs-2.7-Directory-Traversal.html Fri, 25 Feb 2011 17:17:51 GMT iPhone MyDocs version 2.7 suffers from a directory traversal vulnerability. iPhone iFile 2.0 Directory Traversal http://packetstormsecurity.org/files/98725/iphoneifile-traversal.txt http://packetstormsecurity.org/files/98725/iphoneifile-traversal.txt http://packetstormsecurity.org/files/98725/iPhone-iFile-2.0-Directory-Traversal.html Fri, 25 Feb 2011 17:16:14 GMT iPhone iFile version 2.0 suffers from a directory traversal vulnerability. iPhone Folders 2.5 Directory Traversal http://packetstormsecurity.org/files/98724/iphonefolders-traversal.txt http://packetstormsecurity.org/files/98724/iphonefolders-traversal.txt http://packetstormsecurity.org/files/98724/iPhone-Folders-2.5-Directory-Traversal.html Fri, 25 Feb 2011 17:14:36 GMT iPhone Folders version 2.5 suffers from a directory traversal vulnerability. iPhone PDF Reader Pro 2.3 Directory Traversal http://packetstormsecurity.org/files/98702/iphonepdf-traversal.txt http://packetstormsecurity.org/files/98702/iphonepdf-traversal.txt http://packetstormsecurity.org/files/98702/iPhone-PDF-Reader-Pro-2.3-Directory-Traversal.html Thu, 24 Feb 2011 22:25:29 GMT iPhone PDF Reader Pro version 2.3 suffers from a directory traversal vulnerability. iPhone Guitar Directory Traversal http://packetstormsecurity.org/files/98701/iphoneguitar-traversal.txt http://packetstormsecurity.org/files/98701/iphoneguitar-traversal.txt http://packetstormsecurity.org/files/98701/iPhone-Guitar-Directory-Traversal.html Thu, 24 Feb 2011 22:24:31 GMT iPhone Guitar suffers from a directory traversal vulnerability. iPhone iShred 1.93 Directory Traversal http://packetstormsecurity.org/files/98700/iphoneishred-traversal.txt http://packetstormsecurity.org/files/98700/iphoneishred-traversal.txt http://packetstormsecurity.org/files/98700/iPhone-iShred-1.93-Directory-Traversal.html Thu, 24 Feb 2011 22:22:39 GMT iPhone iShred version 1.93 suffers from a directory traversal vulnerability. Share 1.0 For iPhone / iPod Touch Directory Traversal http://packetstormsecurity.org/files/98699/share-traversal.txt http://packetstormsecurity.org/files/98699/share-traversal.txt http://packetstormsecurity.org/files/98699/Share-1.0-For-iPhone-iPod-Touch-Directory-Traversal.html Thu, 24 Feb 2011 22:20:58 GMT Share version 1.0 for iPhone / iPod Touch suffers from a directory traversal vulnerability. myDBLite 1.1.10 For iPhone / iPod Touch Directory Traversal http://packetstormsecurity.org/files/98698/mydblite-traversal.txt http://packetstormsecurity.org/files/98698/mydblite-traversal.txt http://packetstormsecurity.org/files/98698/myDBLite-1.1.10-For-iPhone-iPod-Touch-Directory-Traversal.html Thu, 24 Feb 2011 22:19:47 GMT myDBLite version 1.1.10 for iPhone / iPod Touch suffers from a directory traversal vulnerability. iDocManager 1.0.0 For iPhone / iPod Touch Directory Traversal http://packetstormsecurity.org/files/98697/idocmanager-traversal.txt http://packetstormsecurity.org/files/98697/idocmanager-traversal.txt http://packetstormsecurity.org/files/98697/iDocManager-1.0.0-For-iPhone-iPod-Touch-Directory-Traversal.html Thu, 24 Feb 2011 22:18:24 GMT iDocManager version 1.0.0 for iPhone / iPod Touch suffers from a directory traversal vulnerability. Filer Lite 2.1.0 For iPhone / iPod Touch Directory Traversal http://packetstormsecurity.org/files/98696/filerlite-traversal.txt http://packetstormsecurity.org/files/98696/filerlite-traversal.txt http://packetstormsecurity.org/files/98696/Filer-Lite-2.1.0-For-iPhone-iPod-Touch-Directory-Traversal.html Thu, 24 Feb 2011 22:16:47 GMT Filer Lite version 2.1.0 for iPhone / iPod Touch suffers from a directory traversal vulnerability.