Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Help & Search»Computer Help and Support»Unpatched iPhone Bug Allo...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Computer Help and Support

Related: About this forum
 

Ron Obvious

(6,261 posts) Tue Jul 27, 2021, 02:44 PM Jul 2021

Unpatched iPhone Bug Allows Remote Device Takeover

Amazing. It sounds like an old-fashioned sprintf() style bug with unchecked parameters, if that's not too dated a reference these days.

Summary: A Wifi router with the SSID "%p%s%s%s%s%n" can take over your phone if you connect to it (automatically or otherwise)

A format-string bug believed to be a low-risk denial-of-service issue turns out to be much nastier than expected.

A vulnerability in Apple iOS opens the door to remote code execution (RCE), researchers found. The assessment is a revision from a previous understanding of the flaw that viewed it as a low-risk (and somewhat wacky) denial-of-service (DoS) problem affecting iPhone’s Wi-Fi feature.

The original DoS issue is a string-format bug discovered by researcher Carl Schou, who found that connecting to an access point with the SSID “%p%s%s%s%s%n” would disable a device’s Wi-Fi.”

https://threatpost.com/unpatched-iphone-bug-remote-takeover/167922/
InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 1 replies, 949 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (4) ReplyReply to this post
1 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
Unpatched iPhone Bug Allows Remote Device Takeover (Original Post) Ron Obvious Jul 2021 OP
turn off 'auto join'. Always connect and disconnect your wifi manually. Sunlei Jul 2021 #1

Sunlei

(22,651 posts)
1. turn off 'auto join'. Always connect and disconnect your wifi manually.
Reply to Ron Obvious (Original post)
Thu Jul 29, 2021, 12:29 PM
Jul 2021

personally I don't ever use my iPhone for any banking or important account work, but that's just me

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Help & Search»Computer Help and Support»Unpatched iPhone Bug Allo...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.