Keeping Your Apple Devices Secure
By Keeping The Up-To-Date
Ping!
The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.
If you want on or off the Mac Ping List, Freepmail me
Posted on 07/22/2016 6:13:51 PM PDT by Swordmaker
Researchers have discovered that image files can bury malware, allowing malicious code access without detection.
Security flaws which affect both Apple iOS and Mac devices permit attackers to grab your passwords and data, researchers claim.
According to researchers from Cisco's Talos, a set of five vulnerabilities, if exploited, could lead to data theft and remote code execution -- which in its worst state may result in device hijacking.
The set of bugs, CVE-2016-4631, CVE-2016-4629, CVE-2016-4630, CVE-2016-1850, and CVE-2016-4637, are all caused by how Apple processes image formats. Apple offers APIs as interfaces for accessing image data, and according to Talos, there are five remote code execution flaws related to this system.
The image files which place Mac and iOS users at risk are .tiff, often used in publishing, OpenEXR, Digital Asset Exchange file format XML files, and BMP images.
The researchers say that the .tiff image processing vulnerability is of particular concern as it can be triggered in any application which uses the Apple API when rendering the images. As a result, an attacker could deliver a malicious payload through a wide range of attack vectors -- including iMessage, malicious web pages, MMS messages, or through malicious email attachments.
The malware avoids detection due to the processing weaknesses, and if exploited, this leads to a heap buffer flow issue which extends to remote code execution.
"Furthermore, depending on the delivery method chosen by an attacker, this vulnerability is potentially exploitable through methods that do not require explicit user interaction since many applications (i.e. iMessage) automatically attempt to render images when they are received in their default configurations," Talos notes.
Apple has patched these vulnerabilities in the latest version of iOS, Mac OS X, tvOS, and watchOS. To stay safe, users should make sure their software is up-to-date.
All anyone has to do to avoid any malicious result of these vulnerabilities is to run a fully up-to-date version of iOS 9.3.3 or OS X.11.6 El Caplitan.
The latest Apple/Mac/iOS Pings can be found by searching Keyword "ApplePingList" on FreeRepublic's Search.
If you want on or off the Mac Ping List, Freepmail me
Thank you for the notice and the wise counsel.
Right on analysis.
That said, it’s depressing how many otherwise intelligent people don’t stay up to date with patch releases.
(I won’t even start on the folks still running WinXP...) :-)
These buffer type problems are extremely difficult to ever get to execute with current processors as current processors will not execute code located in data segments.
Exactly. This was a problem maybe ten years ago or so, but not anymore. Thanks for validating that.
Thanks for the info. Updated my iPad.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.