toggle

AAPL Stock: 112.65 ( + 3.24 )

Printed from http://www.macnn.com

iOS 5.0.1 security fixes eliminate Smart Cover exploit

updated 02:40 pm EST, Thu November 10, 2011

Also copes with DNS, certificate, kernel issues

The iOS 5.0.1 update deals with several security flaws in addition to making feature improvements, an Apple note indicates. Among these is a Smart Cover exploit that allowed people to skip passcodes and gain limited access to an iPad 2. Also fixed are vulnerabilities in components like fonts, DNS and URL handling, and weak certificates associated with DigiCert Malaysia, which are no longer trusted.

Of special interest is a kernel glitch which permitted apps to bypass codesigning checks. The hole was identified by Accuvant Labs researcher Charlie Miller, who ended up booted from the iOS Developer Program for the manner in which he publicized the problem. Although Miller is said to have sent his findings to Apple, he was rejected as an iOS developer after publicizing the flaw several weeks later in an interview with Forbes.




by MacNN Staff

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Dell AD211 Bluetooth speaker

For all of the high-priced, over-engineered Bluetooth speakers in the electronics market, there is still room for mass-market solution ...

VisionTek 128GB USB Pocket SSD

USB flash drives dealt the death blow to both the floppy and Zip drives. While still faster than either of the old removable media, sp ...

Kodak PixPro SL10 Smart Lens Camera

Smartphone imagery still widely varies. Large Megapixel counts don't make for a good image, and the optics in some devices are lackin ...

toggle

Most Commented