Updated:03:34 PM EDT Jul 06


this is ggmania.com subsite Google's Project Zero found six iPhone vulnerabilities - TechAmok

Google's Project Zero found six iPhone vulnerabilities - [security]
05:36 PM EDT - Jul,30 2019 - post a comment

Project Zero researchers Natalie Silvanovich and Samuel Gros describe the vulnerabilities as 'interactionless.' In other words, no action on the user's part is needed to exploit the device. For at least four of them, however, the user must open a malicious message.

The iMessage client was the source of the weaknesses. Four of them (CVE-2019-8647, CVE-2019-8660, and CVE-2019-8662) involved an attacker sending a message containing malicious code that would execute as soon as it was opened. One of these remains unpatched (CVE-2019-8641). Details on that exploit are being withheld until it is fixed.

The other two flaws (CVE-2019-8624 and CVE-2019-8646) allow an attacker to cause a memory leak and steal data using a remote device. These bugs also did not require action from the user.

Silvanovich will be appearing at the Black Hat security conference next week to present her research on remote interactionless iPhone vulnerabilities.

Zero-day exploits that require little or no interaction by the user sell for big money on the black market. ZDNet estimates that this small batch of vulnerabilities could have sold for between $5 million and $24 million due to their ability to exploit the device undetected.

Users are urged to update to iOS 12.4 if they haven't already.


Short overview of recent news articles

Google announces Gmail on iPadOS now supports Split View (Jul,06 2020 )

Atari VCS Console Finally Set To Release in Fall 2020 (Jul,06 2020 )

An American Pickle - Official Trailer (Jul,05 2020 )

Top 10 Most Disliked YouTube Videos 2016 - 2020 (Jul,05 2020 )

Osprey Carries Away Huge Fish as Myrtle Beach Tourists Watch On (Jul,05 2020 )

Hands-on with Windows 10 build 20161 (Jul,04 2020 )

When your brain forecasts your mood (Jun,30 2020 )

Why Russia Built a Floating Nuclear Power Plant (Jun,30 2020 )

Samsung 980 PRO Clears Korean Regulators, Comes in Three Sizes (Jun,30 2020 )

Qualcomm Refreshes Smartwatch Chips (Jun,30 2020 )

AMD Adrenalin 20.5.1 Beta driver (Jun,28 2020 )

Twitch has Banned Dr. Disrespect (Jun,27 2020 )

Twitch Streamer Alinity Banned After Nip Slip - uncensored video (Jun,27 2020 )

Microsoft Moves to Permanently Close Physical Shops (Jun,27 2020 )

Apple Responds to Your Comments! (Jun,26 2020 )

iOS 14 Will Allow Quick Biometric Login for Web Sites (Jun,26 2020 )

Microsoft Reveals List of Games Optimized For Xbox Series X (Jun,26 2020 )

Cyberpunk 2077 gameplay trailer released (Jun,25 2020 )

NVIDIA GeForce Game Ready 451.48 WHQL Drivers (Jun,24 2020 )

Kill Bill Fire Rope Dart Choreography (Jun,23 2020 )

How Strong is Chemical Metal? Hydraulic Press Test! (Jun,23 2020 )

Betting Online - Do It Right if You Want to Get More (Jun,23 2020 )

iOS 14 Promotes Widgets to Home Screen (Jun,22 2020 )

Painting a Lada with some home-brewed Vantablack paint (Jun,21 2020 )

How to end a fight in 2 seconds (Jun,20 2020 )

Microsoft is pushing out its new Edge browser to Windows 7 and 8.1 (Jun,20 2020 )

Microsoft fixes print spooler issue for the Windows 10 May 2020 (Jun,19 2020 )

Microsoft Extends its ATP Defender Protection to UEFI BIOS (Jun,19 2020 )

Robot Spy Pig Meets Komodo Dragons - It Doesn't End Well! (Jun,18 2020 )

Samsung Galaxy A71 5G Coming to All Major US Carriers (Jun,18 2020 )

Qualcomm Brings 5G and Higher Performance to Snapdragon 6 Series (Jun,18 2020 )

Twitter Starts Rolling out Audio Tweets (Jun,18 2020 )

2020 - Official Movie Trailer (Jun,17 2020 )

Netflix's The Witcher season 2 will not feature multiple timelines (Jun,17 2020 )

Intel Ice Lake CPUs Have a System Crashing Bug (Jun,15 2020 )

Here's A Knife Made By Putting Sand In The Microwave (Jun,14 2020 )

Google Releases Public Beta of Android 11 (Jun,14 2020 )

Google Stadia Now Works With Most Android Phones and Without a (Jun,14 2020 )

Developer Warns VR Headset Damaged Eyesight (Jun,14 2020 )

Get Hitman: Absolution for Free (GOG) (Jun,12 2020 )

EUROVISION SONG CONTEST: The Story Of Fire Saga (Jun,12 2020 )

Samsung 980 Pro PCIe 4.0 SSD Rumored to Launch Within Two Months (Jun,12 2020 )

PS5 hardware revealed (Jun,11 2020 )

Get Ark Survival Evolved for free (Jun,11 2020 )

BILL & TED FACE THE MUSIC Official Trailer #1 (2020) (Jun,10 2020 )

A Hilarious Ad Campaign About Talking To Your Kids About Porn (Jun,10 2020 )

HARRY POTTER Theme but played on my WASHER & DRYER (Jun,10 2020 )

CrossTalk is Another Intel-exclusive Security Vulnerability (Jun,10 2020 )

The Windows 10 May 2020 Update is rolling out to more people today (Jun,10 2020 )

Using the 'shadow-effect' to generate electricity (Jun,10 2020 )

>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs