iPhone OS 3.0.1 Released to Fix SMS Vulnerability [Updated]

Apple has just released iPhone OS 3.0.1 to fix the SMS vulnerability which was revealed by researchers Charlie Miller and Collin Mulliner yesterday at the Black Hat conference in Las Vegas.

They had claimed that a security vulnerability in the iPhone's SMS
messaging system could allow hackers to in theory "take over
every iPhone in the world".

Apple seems to have realized that it was serious enough to release a patch to fix the SMS vulnerability.

This Knowledgebase Article gives more details of the vulnerability where they have given credit to the researchers for finding the security hole:

Impact: Receiving a maliciously crafted SMS message may lead to an unexpected service interruption or arbitrary code execution

Description: A memory corruption issue exists in the decoding of SMS
messages. Receiving a maliciously crafted SMS message may lead to an
unexpected service interruption or arbitrary code execution. This
update addresses the issue through improved error handling. Credit to
Charlie Miller of Independent Security Evaluators, and Collin Mulliner
of Fraunhofer SIT for reporting this issue.

Apple has issued the following statement on the software update:

appreciate the information provided to us about SMS vulnerabilities
which affect several mobile phone platforms. This morning, less than 24
hours after a demonstration of this exploit, we've issued a free
software update that eliminates the vulnerability from the iPhone.
Contrary to what's been reported, no one has been able to take control
of the iPhone to gain access to personal information using this exploit."

Please note that iPhone OS 3.0.1 breaks jailbreaking. So if you have jailbroken and/or unlocked your iPhone then we would recommend you to wait for iPhone Dev Team to release their latest tools. We will keep you posted so stay tuned here at iPhone Hacks.

Folks, if you do not fall in the above category and are planning to
update to the latest firmware, please do let us know how it goes.

Thanks Mo for the heads up.


Some folks have found out that restoring their iPhone with iPhone OS 3.0.1 (7A400) and then, while using RedSnOw (Mac or Windows) selecting the firmware file of iPhone OS 3.0 (7A341) and not iPhone OS 3.0.1, jailbreaks iPhone OS 3.0.1.

The tethering hack still seems to work with AT&T. We still don't know if the MMS hack works with iPhone OS 3.0.1. We will update this post as soon as we get any information.

We hear that iPhone OS 3.0.1 does not update the baseband so you should be able to unlock your iPhone running iPhone OS 3.0.1. Please proceed with caution and at your own risk, we would recommend you to wait for Dev Team or GeoHot to release their updated tools for iPhone OS 3.0.1.