Published Vulnerabilities


Apple iOS v8.x - Message Context & Privacy Vulnerability demonstrated in Wickr App

Apple iOS v8.x - Local Message Context & Privacy Vulnerability demonstrated in Wickr App

Due to some tests in the mobile vulnerability lab the german researcher Benjamin Kunz Mejri discovered a privacy issue in connection with a glitch. The issue allows to merge the message select context menu ahead to an application task even if the task requires an auth. The researcher reported the vulnerability to the apple product security team as responsible disclosure issue.

Technical Details


Apple iOS v8.0.2 - Silent Contact 0Day Vulnerability (Denial of Service)

Denial of Service Vulnerability in Apple iOS v8.0.2

Normally "Denial of Service" is a type of attack on a network that is designed to bring the network to its knees by flooding it with useless traffic. With Apple´s iOS v8.0.2 your iPhone or iPad can be the next target of the attack.

The discovered vulnerability allows an attacker to crash the mobile device and force a system reboot. Not really cool as an average blackhat hacker attack because this will shut down the mobile device.

But if the attacker is a regime, agency or even the police that uses a denial of service attack on mobile phones this would be a serious critical issue. In a real world scenario the mobile phones in a specific area or user group could be targeted and forced to crash/reboot. This could have a strong impact on how to communicate.


Subscribe to RSS - Published Vulnerabilities