Apple has very strict norms in place for the developers who want their apps to be available on the App. Store. In fact, many are calling the approval process as the most stringent process ever. They are not only disapproving apps which are tasteless but also are meticulously going through the source codes of the apps to avoid any malicious features.
Even though such rigid and almost full proof methods and process are present, Charlie Miller, an Apple veteran hacker recently found out a bug which allows the apps to run malicious source codes which are not approved by Apple.
A demo video has also been released (see below), which shows Miller downloading a bugged app, namely Instastock, which he wrote and finally, successfully uploaded to the Apple App Store.
Through this bug the attacker can have complete access to the infected iDevice without the owner knowing anything about it. Miller showed few more things in the video like activating the iPhone vibrator and also downloading contact infomation.
The story was first reported by Forbes and according to the same report the bug will be presented by Miller at SysCan conference to be held in Taiwan.