Un exploit DoS prezentat recent afecteaza iPhone/iPad-urile, terminalele Android si o masina Ford

De către
Adrian Gabor
-

Recent un exploit DoS pentru chip-urile companiei Broadcom a fost prezentat si cu ajutorul sau poate fi exploatata o gama extrem de variata de iDevice-uri ale companiei Apple. Vulnerabilitatea afecteaza chip-urile BCM4325 si BCM4329 ale companiei Broadcom, orice iDevice mai vechi decat iPad 2 si iPhone 4 CDMA(inclusiv) fiind potentiale tinte pentru hackeri. Daca va intrebati ce fel de efect ar putea avea un atac facut asupra acestor dispozitive, ei bine el blocheaza posibilitatea de a mai utiliza acel chip Wi-Fi si nimic mai mult.

An out-of-bounds read error condition exists in Broadcom’s BCM4325 and BCM4329 combo solutions firmware. This error can be leveraged to denial of service attack, and possibly information disclosure. An attacker can send a RSN (802.11i) information element, which causes the Wi-Fi NIC to stop responding. CORE Security Technologies has identified a potential Denial-of-Service (DoS) vulnerability in certain older Broadcom Wi-Fi chips, specifically the BCM4325 and BCM4329. Other Broadcom chips are not affected. This DoS issue could cause certain consumer electronics devices containing these chips to experience a transient WLAN service interruption as long as the DoS is active.

Problema cu aceasta vulnerabilitate sta in faptul ca iDevice-urile vandute deja de Apple nu pot fi protejate impotriva sa decat daca Apple ar gasi o metoda de a instala un firmware update pentru chip-ul Wi-Fi printr-un restore al iOS, in caz contrar orice terminal este vulnerabil. Partea buna este ca efectuarea unui atac DoS necesita cunostinte avansate despre retelistica si nu numai, deci majoritatea utilizatorilor pot sta linistiti deocamdata.

  • BCM4325
    • Apple iPhone 3GS
    • Apple iPod 2G
    • HTC Touch Pro 2
    • HTC Droid Incredible
    • Samsung Spica
    • Acer Liquid
    • Motorola Devour
    • Ford Edge (yes, it’s a car)
  • BCM4329
    • Apple iPhone 4
    • Apple iPhone 4 Verizon
    • Apple iPod 3G
    • Apple iPad Wi-Fi
    • Apple iPad 3G
    • Apple iPad 2
    • Apple Tv 2G
    • Motorola Xoom
    • Motorola Droid X2
    • Motorola Atrix
    • Samsung Galaxy Tab
    • Samsung Galaxy S 4G
    • Samsung Nexus S
    • Samsung Stratosphere
    • Samsung Fascinate
    • HTC Nexus One
    • HTC Evo 4G
    • HTC ThunderBolt
    • HTC Droid Incredible 2
    • LG Revolution
    • Sony Ericsson Xperia Play
    • Pantech Breakout
    • Nokia Lumina 800
    • Kyocera Echo
    • Asus Transformer Prime
    • Malata ZPad

ARTICOLE SIMILAREDE LA ACELAȘI AUTOR