Charlie Miller, the famous security research who published the first known attack on an iPhone, just announced a new vulnerability in iOS devices. A flaw on how code signing is implemented allows an app that appears to be harmless to run unsigned – so, potentially malicious – code on the device. More details on this attack can be found here.

As a proof of concept, Charlie Miller uploaded to the App Store an app that demonstrates the exploit. Right after making it public, Apple removed the app and revoked Miller’s developer license.

In the following video the author demonstrates the attack:

Advertisements