Apple restores certificate validation checks mysteriously missed

  • 24 February 2014
  • 0 replies
  • 558 views

Userlevel 7
Badge +52
Apple released a security update to iOS that restores some certificate-validation checks that had apparently been missing for an unspecified amount of time.
Last week
Apple released a security update to iOS (iOS 7.06) to fix a flaw for certificate-validation checks that could be abused by attackers to conduct a man-in-the-middle attack within the victim’s network to capture or modify data even if protected by SSL/TLS. In reality the checks were present in past versions, but they were not included in the recent version of the operating system for an unspecified amount of time.
Full Article

0 replies

Be the first to reply!

Reply