Published On: Wed, Sep 27th, 2017

Google Discloses Critical WiFi Bug That Allows Attackers to Hijack Apple’s iPhone 7

Apple’s iPhone 7 and Samsung’s Galaxy S7 edge, along with several other inclination that use Broadcom WiFi chips are exposed to a confidence issue. The feat enables hackers to remotely steal a device and is being deliberate as a critical confidence risk. “The feat gains formula execution on a Wi-Fi firmware on a iPhone 7,” Gal Beniamini, a Google Project Zero confidence group member, wrote.

“Upon successful execution of a exploit, a backdoor is extrinsic into a firmware, permitting remote read/write commands to be expelled to a firmware around crafted movement frames, so permitting easy remote control over a Wi-Fi chip.”

dirty-cow-androidRelated Decade-Old “Dirty COW” Security Bug Makes a Comeback to Bite Android Users

“The feat has been tested opposite a Wi-Fi firmware as benefaction on iOS 10.2 (14C92), though should work on all versions of iOS adult to 10.3.3.”

This latest Broadcom chip disadvantage is identical to Broadpwn, that was patched adult by Google and Apple in confidence updates expelled in July. It was afterwards reported to a open in a speak during a Black Hat 2017 conference. The vulnerability had perceived a vital 9.8 out of 10 measure in a US’s National Institute of Standards and Technology astringency scale.

While Broadpwn was pronounced to have been influenced over a billion devices, it wouldn’t be doubtful if a latest Broadcom WiFi smirch also affects a identical series of devices.

“Broadcom produces Wi-Fi HardMAC SoCs that are used to hoop a PHY and MAC covering processing. These chips are benefaction in both mobile inclination and Wi-Fi routers, and are able of doing many Wi-Fi associated events but delegating to a horde OS.”

In a latest confidence issue, tracked as CVE-2017-11120, a initial debility was an out-of-bounds write emanate that could have been exploited by enemy by injecting a vast value into one of a buffers to grasp capricious formula execution. The second problem, tracked as CVE-2017-11121, enables remote formula execution due to aegis overflows.

Patches for this WiFi bug “mostly” expelled opposite a industry

While a researcher accurate a emanate on iPhone 7 and Galaxy S7 edge, a problem introduced by Broadcom WiFi chip, affects a outrageous operation of devices, including Android and Apple phones and TVs. Both Apple and Google have now expelled rags to a issues. iOS 11, that brings a series of critical confidence patches, also carries a repair for this WiFi vulnerability. tvOS has also been updated to move a confidence patch.

In a monthly confidence update, Google had expelled a patch progressing this month, with a Android Security Bulletin 2017-09-05  patch level. But, it competence take Samsung and other Google partners a small while before this patch is expelled to all a devices.

About the Author

Leave a comment

XHTML: You can use these html tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>