Researchers have identified a bug in an application that can enable attackers potentially to gain control of a victim’s iPhone. The app in question, TreasonSMS, enables users to send SMS messages from a desktop Web browser by using their iPhones as Web servers.
The bug lies in the way that the TreasonSMS app handles certain scripts. According to an advisory from Vulnerability Lab, attackers in some cases can exploit the vulnerability in the iPhone app in order to gain complete control of an affected device.
Read more: threatpost