A new iOS vulnerability was discovered by a security researcher over the weekend, causing affected iPhones and iPads to crash and restart when following a link to an HTML page hosting specially crafted CSS code.
The vulnerability hits the WebKit rendering engine used in Safari by applying a CSS effect -- "backdrop-filter" -- that requires enough heavy graphics processing to cause iOS to crash completely.
Software engineer and security researcher Sabri Haddouche, who works for encrypted messaging app Wire, discovered the vulnerability and shared videos of its effects on Twitter. Haddouche also discussed his findings with ZDNet:
"The attack uses a weakness in the -webkit-backdrop-filter CSS property, which uses 3D acceleration to process elements behind them," Haddouche told ZDNet in an interview.Apple has been notified of the vulnerability, and Haddouche confirmed that the company is actively investigating the issue. The researcher also notes that the CSS code in its current form will freeze Safari on macOS "for a minute," and then slow it down, but the Mac won't crash. However, a modified version with Javascript could end with the same outcome as the iOS version, crashing the Mac computer that it's on.
"By using nested divs with that property, we can quickly consume all graphic resources and freeze or kernel panic the OS."
Haddouche didn't publish the modified macOS vulnerability because once the computer reboots, Safari persists and the browser is automatically launched again with the same result, resulting in a cycle of reboots. The researcher says that he discovered the vulnerabilities during research for denial of service bugs on different web browsers.
Tag: Vulnerabiltiies
25 comments
Amid launch rumors that Apple is preparing to release the AirPower sometime soon, the Cupertino company has finally secured the rights to the AirPower trademark.
To get the AirPower trademark,...
Facebook today announced that during a routine security review it discovered "some user passwords" were stored in a readable format within its internal data storage systems, accessible by...
While Apple's new TV streaming service will include its own original content, Apple will also be offering customers access to video streaming subscriptions from third-party services, such as HBO...
The ticket lottery for Apple's 2019 Worldwide Developers Conference ended yesterday afternoon at 5:00 p.m. Pacific Time, and following the end of registration, Apple has started sending out...
Apple has acquired Italian startup Stamplay, which offered an API-based back-end development platform, according to Italian newspaper Il Sole 24 Ore. The report claims Apple paid around five million...
Based on source code from the AirPods page of Apple's website in Australia, MacRumors has uncovered what appears to be a new image of the AirPower with an iPhone XS and the new AirPods wireless...
Early reviews and hands-on impressions of the new iPad mini came out today. Most publications agree that the iPad mini is a great update for fans of the smaller 7.9-inch tablet with almost identical...
AltConf, a popular alternative conference that takes place at the same time as Apple's Worldwide Developers Conference, is returning in 2019. Developers unable to get a ticket to WWDC can instead...
