The Inquirer: Researchers uncover new flaws in Apple's iOS
RESEARCHERS FROM North Carolina State University have revealed more security vulnerabilities in iOS just days after Apple was forced to patch three zero-day flaws in the widely used operating system.o o o
The researchers uncovered a number of flaws that could enable them to launch different types of attack via third-party apps. These include:
Bypassing the iOS's privacy settings for contacts
Learning a user's location search history
Inferring sensitive information (such as when photos were taken) by accessing metadata of system files
Obtaining the user's name and media library
Consuming disk storage space that cannot be recovered by uninstalling the malicious app
Preventing access to system resources, such as the address book
Allowing apps to share information with each other without permission.
Enck said that Apple has been informed of the flaws and is already preparing patches.