Security researcher Carl Schou has found that connecting to WiFi networks with certain names with your iOS device can almost permanently disable your WiFi functionality.
According to user @wr3nchsr on Twitter, the “%s” is the culprit that triggers the vulnerability. If your device has only connected to one malicious network, simply resetting your network settings should fix it.
If your device has connected to more than one malicious network, resetting your network settings will not fix it. To enable WiFi in your device again, you would either need to erase all your data, or back up the device and manually edit the backup and remove malicious entries from the known networks .plist.
This is caused by something called a ‘format string bug’. “%s” is a string format specifier in the programming language C. Normally, the device does not read user inputs as code, but because of this bug, it causes the WiFi to be disabled.
“I don’t believe it is exploitable”, said security researcher Alex Skalozub. Normally, these types of attacks can ‘inject’ code into the device, enabling unwanted programs to be run. Because of the nature of Apple’s framework, injecting code is not possible, and the SSID has a character limit anyway.
This bug has been found to disable AirDrop as well.
Apple has not publicly responded to this matter yet, but in the meantime, try not to connect to any weird public networks.
[ SOURCE ]
Visitors heading to Plaza Mont Kiara can now charge up their EV with the latest…
EVPower has turned on a total of 4x EV Charge Points at Institut Jantung Negara…
Aside from the Poco C81 Pro, the Xiaomi sub-brand has also launched a budget tablet,…
Qualcomm has officially unveiled its Snapdragon X2 Series platform in Malaysia. The new series expands…
Poco has launched its latest budget smartphone, the Poco C81 Pro, in Malaysia. With a…
Ever wished you could just tap in with your credit card at an MRT or…
This website uses cookies.