As long as Apple runs the public key directory for iMessage they can invisibly MitM people’s conversations
@dinodaizovi think I found a (1-byte) buffer overflow: https://github.com/quarkslab/iMITMProtect/blob/master/Crypto/Crypto/crypto.cpp#L172 …
-
-
@bascule Yep, looks like you did! One-byte overflow, writes a NULL past the heap alloc'd buffer. -
@dinodaizovi seems trustworthy ;)
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.