Security researcher Carl Schou has found that connecting to WiFi networks with certain names with your iOS device can almost permanently disable your WiFi functionality.
According to user @wr3nchsr on Twitter, the “%s” is the culprit that triggers the vulnerability. If your device has only connected to one malicious network, simply resetting your network settings should fix it.
If your device has connected to more than one malicious network, resetting your network settings will not fix it. To enable WiFi in your device again, you would either need to erase all your data, or back up the device and manually edit the backup and remove malicious entries from the known networks .plist.
This is caused by something called a ‘format string bug’. “%s” is a string format specifier in the programming language C. Normally, the device does not read user inputs as code, but because of this bug, it causes the WiFi to be disabled.
“I don’t believe it is exploitable”, said security researcher Alex Skalozub. Normally, these types of attacks can ‘inject’ code into the device, enabling unwanted programs to be run. Because of the nature of Apple’s framework, injecting code is not possible, and the SSID has a character limit anyway.
This bug has been found to disable AirDrop as well.
Apple has not publicly responded to this matter yet, but in the meantime, try not to connect to any weird public networks.
[ SOURCE ]
Genting Highlands is home to Malaysia's highest EV Charger with a Shell Recharge Hub that…
2024 is a great time to be an Apple fan in Malaysia as for the…
Following the release of Oppo A3 Pro 5G and A3x in our market earlier this…
Proton has confirmed that its first production EV, the Proton e.MAS 7 will be launched…
Driving to Kelantan with an EV? There's a new 180kW DC charger deployed by Gentari…
The Dyson WashG1 is coming to Malaysia and it's the brand's first dedicated wet floor…
This website uses cookies.