Title: Apple iPhone Crafted User Data Header (UDH) SMS Spoofing Weakness
Aug 18, 2012
Apple iPhone contains a flaw that is triggered during the handling of a crafted User Data Header (UDH), which may allow an attacker to spoof SMS messages. This will cause the reply address to be spoofed so that the incorrect address is displayed on the recipients message.
Remote / Network Access,
Mobile Phone / Hand-held Device
Loss of Confidentiality,
Loss of Integrity
OSVDB is not aware of a solution for this vulnerability.