15 lines of code can crash your Apple iPhone and iPad forcing it to reboot

15 lines of code can crash your Apple iPhone and iPad forcing it to reboot
A developer and security researcher named Sabri Haddouche has discovered 15 lines of code that will crash and reboot any Apple iPhone or Apple iPad. The code takes advantage of a flaw in WebKit, which is the browser engine used by Safari. Haddouche says that a large number of elements are repeated inside the backdrop filter causing all of the phone's resources to be used. This in turn causes a kernel panic, which forces the OS to shut down or face permanent damage and data loss. "Anything that renders HTML on iOS is affected," the security researcher says.

According to other security firms, the code was able to freeze iPhone units running the last iOS 12 beta. Tomorrow, beginning at 10am PDT/1pm EDT, Apple will start pushing out iOS 12 in the U.S. This means that the company will have to disseminate an update in the near future to fix this exploit. Luckily for iOS users, the code cannot be used to run malicious apps or steal personal data. But there is no denying that this is a pain in the ass if you are feuding with someone who sends you a link to the code, or is sending it to you via an HTML email.

At this point, the only thing you can do is look carefully at who is sending you email, and ignore links unless you 100% know where it is taking your browser to. Haddouche informed Apple about this WebKit flaw on Friday, so hopefully the company has already started work on fixing it. If you want to see what the 15 lines of code look like without it bringing down your iOS powered device, click on this link.

source: @pwnsdx via TechCrunch

FEATURED VIDEO

52 Comments

1. pokharkarsaga

Posts: 547; Member since: Feb 23, 2012

Fix it ASAP.

2. NarutoKage14

Posts: 1318; Member since: Aug 31, 2016

All I correct in assuming it just fills up all the devices memory with infinite copies of a picture? You don't need anymore to send you a link, it can be done through any compromised website.

3. darkkjedii

Posts: 30964; Member since: Feb 05, 2011

iOS 12 is a very mild update, but I welcome grouped notifications and Memoji. I actually AR Emoji in my Note, and will on my X.

4. Venom

Posts: 3401; Member since: Dec 14, 2017

Is it me or is Apple slipping? I mean how can they constantly have these types of issues?

5. lyndon420

Posts: 6723; Member since: Jul 11, 2012

No it's not just you. Many of us share the same mindset. It's been an ongoing thing for a while now.

6. Taphius

Posts: 98; Member since: Aug 20, 2018

We all hammered in them for ios11. It was a crap show for the first few updates.

10. Vokilam

Posts: 1181; Member since: Mar 15, 2018

In my opinion - iOS is very uniform and cleaned up. It is easy to find items that are in clean room. Android is so all over the place and different versions of it - you can have a device that has extremely dangerous exploits that are being utilized - but because there are so many different versions and nothing is latest update - no one gonna report that. There are nearly daily articles that show exploits on android. This glitch is a. Serious one if it can render loss of data, but reboot is exactly how the is should handle this. I had to force close my Samsung’s quite often enough due to irresponsible apps and at one point factory reset. Don’t fool yourself - Apple users are nealrly all on same version - so it’s easy to find this - android - were you just depend on luck. At least I know when this is known it’ll be less then a week or two and it will be patched. If something reported on android - good luck!

7. meanestgenius

Posts: 21769; Member since: May 28, 2014

Apple really needs to get their act together with stuff like this. It's like them and Google with their Pixel line are having a competition about who can have the most issues with their smartphones.

24. Venom

Posts: 3401; Member since: Dec 14, 2017

28. meanestgenius

Posts: 21769; Member since: May 28, 2014

https://9to5google.com/2018/08/13/android-9-pie-google-pixel-xl-fast-charging-bug/ Nah, pretty sure they are learning that part from Google, lol.

33. Venom

Posts: 3401; Member since: Dec 14, 2017

So you're saying that the Nokia phones have issues with updates?

38. meanestgenius

Posts: 21769; Member since: May 28, 2014

So you're admitting that Pixel Phones have issues with updates?

43. Venom

Posts: 3401; Member since: Dec 14, 2017

I'm admitting that you are wrong, a usual thing with you.

48. meanestgenius

Posts: 21769; Member since: May 28, 2014

No, you're in denial about me being right. That's a usual thing.

8. Papa_Ji

Posts: 838; Member since: Jun 27, 2016

It's freezing and crashing not just iOS 12 Beta but all iOS versions. Even iMac is crashing.... Cheap quality products.... From cheap company.

12. Venom

Posts: 3401; Member since: Dec 14, 2017

Sounds like Apple is cheating the consumer like Huawei cheating on the benchmark tests.

13. meanestgenius

Posts: 21769; Member since: May 28, 2014

Sounds like Googles Pixel line with all of the issues, lol.

16. Venom

Posts: 3401; Member since: Dec 14, 2017

Sounds like the 6.1 with its slew of issues.

21. meanestgenius

Posts: 21769; Member since: May 28, 2014

Sounds like Essential Phone with its slew of documented issues.

23. Venom

Posts: 3401; Member since: Dec 14, 2017

Sounds like you don't know what you are talking about.

29. meanestgenius

Posts: 21769; Member since: May 28, 2014

Sounds like you're talking about yourself.

34. Venom

Posts: 3401; Member since: Dec 14, 2017

Back at you.

39. meanestgenius

Posts: 21769; Member since: May 28, 2014

Lol, such a childish and petty response. It suits you to the core.

44. Venom

Posts: 3401; Member since: Dec 14, 2017

I'm childish? Lol, may I remind you that you are the one who has been at me for months now just because you have a severe case of mistaken identity.

49. meanestgenius

Posts: 21769; Member since: May 28, 2014

Lol, you're constantly trying to lie about who you really are like it's some big secret, so yeah, you are childish, lol.

* Some comments have been hidden, because they don't meet the discussions rules.

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.