Security researcher Carl Schou has found that connecting to WiFi networks with certain names with your iOS device can almost permanently disable your WiFi functionality.
According to user @wr3nchsr on Twitter, the “%s” is the culprit that triggers the vulnerability. If your device has only connected to one malicious network, simply resetting your network settings should fix it.
If your device has connected to more than one malicious network, resetting your network settings will not fix it. To enable WiFi in your device again, you would either need to erase all your data, or back up the device and manually edit the backup and remove malicious entries from the known networks .plist.
This is caused by something called a ‘format string bug’. “%s” is a string format specifier in the programming language C. Normally, the device does not read user inputs as code, but because of this bug, it causes the WiFi to be disabled.
“I don’t believe it is exploitable”, said security researcher Alex Skalozub. Normally, these types of attacks can ‘inject’ code into the device, enabling unwanted programs to be run. Because of the nature of Apple’s framework, injecting code is not possible, and the SSID has a character limit anyway.
This bug has been found to disable AirDrop as well.
Apple has not publicly responded to this matter yet, but in the meantime, try not to connect to any weird public networks.
[ SOURCE ]
This is your last call to pick up a Gentari Go Power Pass membership plan…
TNB Electron's continues to expand its EV charging network in Perak with the opening its…
You can now purchase a Neta V in Malaysia for just RM39,999, according to an…
If you are struggling to find a Valentine’s gift that isn’t the usual box of…
Perodua has published the service schedule for the Perodua QV-E on the official website for…
A long time coming, the GWM Wey G9 PHEV is finally available in Malaysia. The…
This website uses cookies.