Apple releases iOS 4.3.5, resolves security issue


Recommended Posts

Apple releases iOS 4.3.5, resolves security issue

Apple has just released iOS 4.3.5 for the iPhone, iPad and iPod touch. This update comes just says after the iOS 4.3.4 release and it resolves a ?security issue.?

iOS 4.3.5 Software Update

A security issue has been resolved with certificate verification.

This software update is compatible with these products:

? iPhone 4 (GSM model)

? iPhone 3G

? iPhone 2

? iPhone

? iPod touch (4th generation)

? iPod nano (3rd generation)

Source: 9to5Mac

Link to comment
Share on other sites

Their translation of the original article is horrible ("comes just says"?), and what the hell is up with the supported devices list? It makes no sense at all.

I'm guessing the correct list should read:

? iPhone 4 (GSM model)

? iPhone 3Gs

? iPad 2

? iPad

? iPod touch (4th generation)

? iPod touch (3rd generation)

Link to comment
Share on other sites

Apple releases iOS 4.3.5, resolves security issue

Apple has just released iOS 4.3.5 for the iPhone, iPad and iPod touch. This update comes just says after the iOS 4.3.4 release and it resolves a ?security issue.?

iOS 4.3.5 Software Update

A security issue has been resolved with certificate verification.

This software update is compatible with these products:

? iPhone 4 (GSM model)

? iPhone 3G

? iPhone 2

? iPhone

? iPod touch (4th generation)

? iPod nano (3rd generation)

Source: 9to5Mac

Updating my iPhone 2 and iPod nano as I type this. :)

Link to comment
Share on other sites

Their translation of the original article is horrible ("comes just says"?), and what the hell is up with the supported devices list? It makes no sense at all.

I'm guessing the correct list should read:

? iPhone 4 (GSM model)

? iPhone 3Gs

? iPad 2

? iPad

? iPod touch (4th generation)

? iPod touch (3rd generation)

iPhone 4 (CDMA) : http://appldnld.apple.com/iPhone4/041-1959.20110721.jvP29/iPhone3,3_4.2.10_8E600_Restore.ipsw

Link to comment
Share on other sites

Better update to 4.3.5 as a new version of sslsniff can intercept traffic from vulnerable iPhones (iPads,...)

(This allows anyone who can capture traffic from your iPhone, iPad or iPod Touch with man-in-the-middle techniques to intercept and read any and all encrypted SSL traffic silently and without notification to the user.)

Today, Gregor Kopf and Paul Kehrer released an advisory for iOS, announcing that it is also vulnerable to the BasicConstraints attack. Since this is the anniversary of the bug that prompted the release of sslsniff to begin with, I've updated it to add iOS fingerprinting support.

http://blog.thoughtcrime.org/sslsniff-anniversary-edition

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.