In mid-August, pod2g disclosed a vulnerability that exists in iOS whereby malicious users can send spoofed SMS to an iPhone user using any chosen reply to number. The thing here to note is that carriers neglect the User Data Header part because no one other than Apple is known to have implemented this.
Apple just released iOS 6 under general availability and users are busy updating their iDevices. One user @P0sixninja tweeted that iOS 6 comes with “insane number of security fixes” and that it has also fixed the vulnerability that was discovered by pod2g.
@pod2g‘s SMS spoofing bug was fixed
— Joshua Hill (@p0sixninja) September 19, 2012