iOS 11.3 was launched last week for iPhone, iPad and iPod Touch, and an IT security expert confirmed that a 0day vulnerability remained active in the operating system of Apple Lossless Audio CODEC (ALAC),. iOS 11.3 brings many solutions for existing security problems in iPhone and iPad, but the 0day one is extremely important because it is not known to Apple.
iOS 11.3 can be fully exploited with a 0day vulnerability, so a hacker can very easily obtain administrator privileges on the iPhone, iPad, or iPod Touch whenever they want. This 0day vulnerability for iOS 11.3 can be worth several hundred thousand dollars if it is disclosed to Apple, or if it is sold to a company specialized in extracting information.
iOS 11.3 cannot be fully secured by Apple, so vulnerabilities will always be discovered, but this is an extremely important one. If Apple finds out what it exploits in iOS 11.3, then it will surely be closed in a future update of the operating system, but in the meantime, it will be able to be used by those who discovered it.
Good~A zero-day bug survived in the iOS 11.3 update~~~??? pic.twitter.com/K7LMVhxyPh
- Min (Spark) Zheng (@SparkZheng) April 4, 2018
iOS 11.3 could also have a jailbreak solution developed based on this 0day vulnerability, it being announced by a researcher in IT security from Alibaba. It is unlikely that it will be offered for free before being closed, so for iOS 11.3 there is the possibility of using it in a jailbreak solution, but no one knows when this could happen.
