Wednesday, July 19, Apple released an update for iPhone and iPad. In iOS 10.3.3 in addition to improve performance and eliminate bugs were closed a dangerous vulnerability that allows attackers to remotely steal information and execute arbitrary code on a mobile device.
Apple has released an update, which is recommended to install for every user of iPhone or iPad. iOS 10.3.3 closed many “holes” of security, including fixed a problem with wireless connection.
Hackers are continuously looking for new vulnerabilities in the operating system of Apple, older devices with older OS versions are tasty morsel. On earlier versions of iOS hackers found a bug that opens a remote access to iPhone and iPad. For its operation the attacker needs to send target device information element WME (QoS) of irregular length.
Initially it was assumed that for this the victim needs to be in range of a wireless Wi-Fi network. But later, the experts found that the network connection is optional.
The vulnerability was named Broadpwn and the identifier CVE-2017-9417. Google has released the appropriate patch for your Android devices 5 July.
It is noteworthy that the hacker did not need to know the password of the user to control the gadget. On a scale of the National Institute of standards and technology U.S. vulnerability Broadpwn got 9.8 points out of 10.
Apple indicates that the issue affects all iPhones from 5 to 7, iPad 4th generation and newer, and iPod touch 6th generation.