A few choice quotes: "All iPhone applications run with full root privileges and any application vulnerability means winner takes all."
"The iPhone has been turned into a "pocket-sized ... network-enabled root shell." "Moore revealed multiple security chasms on Apple's device: The first and most shocking is that each and every process running on the iPhone ... [runs] with full root privileges. What that means: A security vulnerability in any iPhone application can lead to complete system takeover." "A rootkit takes on a whole new meaning when the attacker has access to the camera, microphone, contact list and phone hardware. Couple this with 'always-on' Internet access over EDGE and you have a perfect spying device," "The shellcode combined with the number of bugs present in the iPhone finally make mobile attacks a real threat," wrote Errata Chief Technology Officer David Maynor in a blog posting. http://www.eweek.com/article2/0,1895,2191471,00.asp http://blog.metasploit.com/2007/09/root-shell-in-my-pocket-and-maybe-yours.html ************************************************************************ * ==> QUICK LIST-COMMAND REFERENCE - Put the following commands in <== * ==> the body of an email & send 'em to: [EMAIL PROTECTED] <== * Join the list: SUBSCRIBE COMPUTERGUYS-L Your Name * Too much mail? Try Daily Digests command: SET COMPUTERGUYS-L DIGEST * Tired of the List? Unsubscribe command: SIGNOFF COMPUTERGUYS-L * New address? From OLD address send: CHANGE COMPUTERGUYS-L YourNewAddress * Need more help? Send mail to: [EMAIL PROTECTED] ************************************************************************ * List archive at www.mail-archive.com/computerguys-l@listserv.aol.com/ * RSS at www.mail-archive.com/computerguys-l@listserv.aol.com/maillist.xml * Messages bearing the header "X-No-Archive: yes" will not be archived ************************************************************************
