IOS 8 vulnerability causes any iPhone iPad within wifi coverage to restart continuously

Author: qxz_xp Published: April 23, 2015 20:35 Classification: Vulnerability announcement , network security   No comment  

At the RSA security conference in San Francisco on Tuesday, researchers presented their latest research results - 0day in iOS 8 loophole "No iOS zone". As the name implies, it can make a WiFi Apple iPhone The iPad and iPods are constantly restarted, and the only thing the victim can do after being attacked is to run away.

fourteen trillion and two hundred and ninety-seven billion seven hundred and ninety-seven million nine hundred and seventy-five thousand seven hundred and ninety-five

Overwhelming: "iOS free zone"

Adi Sharabani and Yair Amit, researchers of Skycure, a mobile security company, presented their latest research at the RSA security conference in San Francisco on Tuesday. The name of their research is also very aggressive, and it is called "iOS free zone". This is a bit like a DoS attack against iOS devices. The result is that individual iOS applications crash, or the user's entire iPhone crashes.

Attackers can create a malicious wifi network that can crash nearby users' mobile devices very accurately. In addition, the "No iOS Zone" attack can make iOS devices in the wireless network constantly restart and completely unavailable.

This attack method is similar to the DoS (denial of service) attack. The DoS attack against the website makes users unable to access the site, and this "iOS free zone" attack is also like this:

Anyone can take a router and build one (malicious) Wifi Hot spots, and then force (nearby users) to connect to (the attacker's) network, and then process traffic, leading to the crash of (the victim's mobile phone) applications and operating systems, "Sharabani said at the RSA conference.

It's no use to break the line

What about this malicious Wifi? Go away quickly! This sounds helpless, but users really have no other choice in the face of this attack at present - iOS users can only do away from the coverage of malicious hotspots.

Sharabani said:

"You have no choice but to physically stay away from the attacker. This is not a denial of service (DoS) attack that prevents you from using Wifi, but a denial of service attack that prevents you from using the device when you are offline."

Another precaution: Don't use the free wireless network you find on the street.

fourteen trillion and two hundred and ninety-seven billion eight hundred and seven million four hundred and eleven thousand one hundred and eighty-six

Attack process

All the attacker has to do is build a wifi Network to process SSL certificates sent to iOS devices. Once the device is connected to this malicious wireless hotspot, the attacker will start a malicious script, which will cause the application and mobile system to crash.

Demo videos and documents

View information about wireless attacks PDF Document

Sharabani and Amit contacted Apple on this matter, but it is not clear whether Apple will release a patch. Therefore, the researchers decided not to disclose more technical details about this attack to ensure the security of iOS users.

From: Freebuf

Original article reprint please specify: reprint from Seven Travelers Blog

Fixed link of this article: https://www.qxzxp.com/6090.html

QQ Zone WeChat Tencent Weibo Sina Weibo My Sohu Renren Tianya Community Baidu Post Bar more
Previous
Next

You may also be interested in these articles!

  1. WIFI master key (except advertising display password version) (12)
  2. Users should be alert, NFC function of Android phone can intercept non-contact I (7)
  3. WeChat exposes remote arbitrary code execution vulnerability, which can be controlled remotely (1)
  4. Burpsuite 1.7.03 The latest cracked version of penetration artifact (5)
  5. Teach you how to view the WIFI password of 4.3 and above systems (3)
  6. Killall master key 3.2.16 Wifi master key display password to advertise (5)
  7. Polar bear scanner 3.5 adds super search, and cloud platform supports online installation (7)
  8. Teach you how to crack the Wi Fi password of the girl next door (11)
  9. AirDrop vulnerability millions of Apple devices can be silently installed with malicious applications (2)
  10. Use the search engine to grab PHP scripts in batch (1)
  11. Penetrating artifact Burpsuite Pro v1.6.24 cracked version download (1)
  12. Technical Disclosure "QQ Space" Automatically Forwards Bad Information (2)
  13. Hacking Team RCSAndroid Trojans (1)
  14. Attack test on WiFi of three British politicians (1)
  15. Acunetix Web Vulnerability Sca
  16. Approaching Science: Go to the Black Market on Weekends

IOS 8 vulnerability causes any iPhone iPad within the wifi coverage to restart continuously: waiting for you to sit on the sofa!

Comment

8 + 1 =

Shortcut key: Ctrl+Enter