IT | Security

Use Absolute Manage to protect yourself from iOS vulnerability

By: Absolute Team | 8/1/2011

The TrustWave SSL team issued an advisory regarding a vulnerability in iOS which could enable a hacker to sign an SSL certificate. While Apple has released an update (iOS 4.3.5) which fixes the issue, administrators using Absolute Manage MDM can take certain actions to protect themselves.

  1. Create a Smart Policy containing all iOS devices running iOS 4.3.4 and lower.
  2. Revoke profiles for corporate resources, such as email, VPN and WiFi networks for all devices in this policy.
  3. Send a message advising all users in this policy to sync and update iOS.

Once devices have been updated to the newest version of iOS, they will be removed from the Smart Policy, and receive the profiles giving them access to company resources again.