iPhone Hacked Via Mobile Safari Exploit At Pwn2Own; Hijacks SMS Database

BY Jason

Published 24 Mar 2010

Pwn2Own contest to exploit smartphone vulnerabilities

We’re getting reports that iPhone was the first to fall at this year’s Pwn2Own contest organized by TippingPoint ZDI.

A pair of European researchers, Vincenzo Iozzo and Ralf Philipp Weinmann have successfully hacked the iPhone via a Mobile Safari exploit and hijack the entire SMS database, including text messages that had already been deleted.

The organizers of the event announced this breaking news via a tweet:

Vincenzo Iozzo and Ralf Philipp Weinmann successfully exploit the iPhone via Safari! Their payload pulled the SMS database.

Though they hacked an iPhone 3GS running iPhone OS 3.1.3, it affects security of all iPhones.

Folks at Threadpost have provided some more details from the event:

The exploit crashed the iPhone's browser session but Weinmann said that, with some additional effort, he could have a successful attack with the browser running.

Weinmann explained:

"Basically, every page that the user visits on our [rigged] site will grab the SMS database and upload it to a server we control."

Vincenzo Iozzo (32) and Ralf Philipp Weinmann (22) found the vulnerability and also to wrote the exploit. They also got assistance from Halvar Flake, a renowned security researcher.

According to Flake:

“The biggest hiccup was bypassing the code-signing mitigation implemented by Apple on its flagship mobile device.

This exploit doesn't get out of the iPhone sandbox but noting that an attacker can do enough damage without escaping from the sandbox

Apple has pretty good counter-measures but they are clearly not enough.  They way they implement code-signing is too lenient.”

In addition to hijacking the SMS database, Weinmann believes that the exploit could have also hijacked the phone contact list, photographs and iTunes music files though he wasn’t sure if it would be able to hijack emails.

Weinmann and Iozzo won a cash prize of $15,000 and also get to keep the hacked iPhone.

It will be interesting to see when Apple releases an update to close the exploit as it sounds quite scary that a rigged site could get access to your personal data on the iPhone.

Let us know your thoughts in the comments.

[via Threadpost]

Related Articles

iPhone Apps

iOS 17 to Allow Sideloading Apps on iPhone, Says Report

Sriansh
iPhone 15 Pro Buttons

iPhone 15 Pro Won’t Have Solid-State Buttons After All

Sriansh

iOS 16.5 and iPadOS 16.5 Beta 2 Download Available Now

Sriansh
iOS 16.4

iOS 16.4.1 Download Available Now

Sriansh
must-have-ipad-pro-pencil-apps-featured

IPAD PRO 2

Oct 30, 2016

11 Must Have Apps for Apple Pencil and iPad Pro Users

Khamosh Pathak

iPad Pro is a beast of a machine. Yes, it runs iOS but don’t let that fool you. iOS has many ways to be productive and for doing creative work. Granted, it’s different

Read More

MACOS

Jun 13, 2016

‘Apple File System’ Is the Company’s New File System for watchOS, iOS, tvOS, and macOS

Rajesh Pandey

It has long been rumored that Apple is working on a new file system to replace the archaic HFS+ file system that macOS currently uses. The company was expected to announce a new file system

Read More
Apple volunteer

APPLE NEWS

Mar 16, 2015

‘Apple Global Volunteer Program’ will let employees sign up to help local communities

Evan Selleck

Apple is no stranger to donating large sums of money to a cause, or to even help diversification within the tech industry. But now it's aiming to donate some individual human hours as well,

Read More

Want to know more about apple Products

We launch new articles subscribe and get updated. MAX 1 email a week. No spam, ever.

Cancel